Total
2763 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2021-1637 | 1 Microsoft | 5 Windows 10, Windows 8.1, Windows Rt 8.1 and 2 more | 2021-01-14 | 2.1 LOW | 5.5 MEDIUM |
| Windows DNS Query Information Disclosure Vulnerability | |||||
| CVE-2013-3128 | 1 Microsoft | 9 .net Framework, Windows 7, Windows 8 and 6 more | 2020-12-08 | 9.3 HIGH | N/A |
| The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT, and .NET Framework 3.0 SP2, 3.5, 3.5.1, 4, and 4.5, allow remote attackers to execute arbitrary code via a crafted OpenType font (OTF) file, aka "OpenType Font Parsing Vulnerability." | |||||
| CVE-2020-1599 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2020-11-24 | 2.1 LOW | 5.5 MEDIUM |
| Windows Spoofing Vulnerability | |||||
| CVE-2020-17068 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2020-11-23 | 7.2 HIGH | 7.8 HIGH |
| Windows GDI+ Remote Code Execution Vulnerability | |||||
| CVE-2020-17051 | 1 Microsoft | 4 Windows Server 2008, Windows Server 2012, Windows Server 2016 and 1 more | 2020-11-23 | 10.0 HIGH | 9.8 CRITICAL |
| Windows Network File System Remote Code Execution Vulnerability | |||||
| CVE-2013-0006 | 1 Microsoft | 15 Expression Web, Groove Server, Office and 12 more | 2020-11-20 | 9.3 HIGH | N/A |
| Microsoft XML Core Services (aka MSXML) 3.0, 5.0, and 6.0 does not properly parse XML content, which allows remote attackers to execute arbitrary code via a crafted web page, aka "MSXML Integer Truncation Vulnerability." | |||||
| CVE-2020-16997 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2020-11-19 | 4.0 MEDIUM | 6.5 MEDIUM |
| Remote Desktop Protocol Server Information Disclosure Vulnerability | |||||
| CVE-2020-17047 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2020-11-19 | 7.8 HIGH | 7.5 HIGH |
| Windows Network File System Denial of Service Vulnerability | |||||
| CVE-2020-17042 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2020-11-19 | 9.3 HIGH | 8.8 HIGH |
| Windows Print Spooler Remote Code Execution Vulnerability | |||||
| CVE-2020-17004 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2020-11-18 | 2.1 LOW | 5.5 MEDIUM |
| Windows Graphics Component Information Disclosure Vulnerability | |||||
| CVE-2020-17056 | 1 Microsoft | 6 Windows 10, Windows 8.1, Windows Rt 8.1 and 3 more | 2020-11-18 | 2.1 LOW | 5.5 MEDIUM |
| Windows Network File System Information Disclosure Vulnerability | |||||
| CVE-2020-17000 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2020-11-18 | 2.1 LOW | 5.5 MEDIUM |
| Remote Desktop Protocol Client Information Disclosure Vulnerability | |||||
| CVE-2020-17069 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2020-11-16 | 2.1 LOW | 5.5 MEDIUM |
| Windows NDIS Information Disclosure Vulnerability | |||||
| CVE-2020-16902 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2020-10-27 | 7.2 HIGH | 7.8 HIGH |
| An elevation of privilege vulnerability exists in the Windows Installer when the Windows Installer fails to properly sanitize input leading to an insecure library loading behavior.A locally authenticated attacker could run arbitrary code with elevated system privileges, aka 'Windows Installer Elevation of Privilege Vulnerability'. | |||||
| CVE-2020-16927 | 1 Microsoft | 6 Windows 10, Windows 8.1, Windows Rt 8.1 and 3 more | 2020-10-23 | 7.8 HIGH | 7.5 HIGH |
| A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Protocol (RDP) Denial of Service Vulnerability'. | |||||
| CVE-2020-16891 | 1 Microsoft | 7 Windows 10, Windows 7, Windows 8.1 and 4 more | 2020-10-23 | 7.2 HIGH | 8.8 HIGH |
| A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Windows Hyper-V Remote Code Execution Vulnerability'. | |||||
| CVE-2020-16897 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2020-10-22 | 2.1 LOW | 5.5 MEDIUM |
| An information disclosure vulnerability exists when NetBIOS over TCP (NBT) Extensions (NetBT) improperly handle objects in memory, aka 'NetBT Information Disclosure Vulnerability'. | |||||
| CVE-2020-16940 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2020-10-21 | 4.9 MEDIUM | 5.5 MEDIUM |
| An elevation of privilege vulnerability exists when the Windows User Profile Service (ProfSvc) improperly handles junction points, aka 'Windows - User Profile Service Elevation of Privilege Vulnerability'. | |||||
| CVE-2020-16949 | 1 Microsoft | 11 365 Apps, Office, Outlook and 8 more | 2020-10-21 | 5.0 MEDIUM | 7.5 HIGH |
| A denial of service vulnerability exists in Microsoft Outlook software when the software fails to properly handle objects in memory, aka 'Microsoft Outlook Denial of Service Vulnerability'. | |||||
| CVE-2020-16922 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2020-10-20 | 2.1 LOW | 5.5 MEDIUM |
| A spoofing vulnerability exists when Windows incorrectly validates file signatures, aka 'Windows Spoofing Vulnerability'. | |||||