Filtered by vendor Microsoft Subscriptions
Filtered by product Windows 8.1 Subscriptions
Total 2883 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2021-26887 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2024-11-19 7.8 High
<p>An elevation of privilege vulnerability exists in Microsoft Windows when Folder redirection has been enabled via Group Policy. When folder redirection file server is co-located with Terminal server, an attacker who successfully exploited the vulnerability would be able to begin redirecting another user's personal data to a created folder.</p> <p>To exploit the vulnerability, an attacker can create a new folder under the Folder Redirection root path and create a junction on a newly created User folder. When the new user logs in, Folder Redirection would start redirecting to the folder and copying personal data.</p> <p>This elevation of privilege vulnerability can only be addressed by reconfiguring Folder Redirection with Offline files and restricting permissions, and NOT via a security update for affected Windows Servers. See the <strong>FAQ</strong> section of this CVE for configuration guidance.</p>
CVE-2021-24103 1 Microsoft 20 Windows 10, Windows 10 1507, Windows 10 1607 and 17 more 2024-11-19 7.8 High
Windows Event Tracing Elevation of Privilege Vulnerability
CVE-2021-24083 1 Microsoft 19 Windows 10, Windows 10 1507, Windows 10 1607 and 16 more 2024-11-19 7.8 High
Windows Address Book Remote Code Execution Vulnerability
CVE-2021-1734 1 Microsoft 20 Windows 10, Windows 10 1507, Windows 10 1607 and 17 more 2024-11-19 7.5 High
Windows Remote Procedure Call Information Disclosure Vulnerability
CVE-2021-1706 1 Microsoft 20 Windows 10, Windows 10 1507, Windows 10 1607 and 17 more 2024-11-19 7.3 High
Windows LUAFV Elevation of Privilege Vulnerability
CVE-2021-1657 1 Microsoft 20 Windows 10, Windows 10 1507, Windows 10 1607 and 17 more 2024-11-19 7.8 High
Windows Fax Compose Form Remote Code Execution Vulnerability
CVE-2021-31959 1 Microsoft 16 Windows 10, Windows 10 1507, Windows 10 1607 and 13 more 2024-11-19 6.4 Medium
Scripting Engine Memory Corruption Vulnerability
CVE-2021-31183 1 Microsoft 19 Windows 10, Windows 10 1507, Windows 10 1607 and 16 more 2024-11-19 7.5 High
Windows TCP/IP Driver Denial of Service Vulnerability
CVE-2021-33749 1 Microsoft 18 Windows 10, Windows 10 1507, Windows 10 1809 and 15 more 2024-11-19 8.8 High
Windows DNS Snap-in Remote Code Execution Vulnerability
CVE-2021-33773 1 Microsoft 15 Windows 10, Windows 10 1507, Windows 10 1607 and 12 more 2024-11-19 7.8 High
Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
CVE-2021-34498 1 Microsoft 19 Windows 10, Windows 10 1507, Windows 10 1607 and 16 more 2024-11-19 7.8 High
Windows GDI Elevation of Privilege Vulnerability
CVE-2021-34446 1 Microsoft 17 Windows 10, Windows 10 1507, Windows 10 1607 and 14 more 2024-11-19 8 High
Windows HTML Platforms Security Feature Bypass Vulnerability
CVE-2021-34459 1 Microsoft 15 Windows 10, Windows 10 1507, Windows 10 1607 and 12 more 2024-11-19 7.8 High
Windows AppContainer Elevation Of Privilege Vulnerability
CVE-2021-26426 1 Microsoft 16 Windows 10, Windows 10 1507, Windows 10 1607 and 13 more 2024-11-18 7 High
Windows User Account Profile Picture Elevation of Privilege Vulnerability
CVE-2021-34480 1 Microsoft 16 Windows 10, Windows 10 1507, Windows 10 1607 and 13 more 2024-11-18 6.8 Medium
Scripting Engine Memory Corruption Vulnerability
CVE-2021-36959 1 Microsoft 20 Windows 10, Windows 10 1507, Windows 10 1607 and 17 more 2024-11-18 5.5 Medium
Windows Authenticode Spoofing Vulnerability
CVE-2021-38633 1 Microsoft 20 Windows 10, Windows 10 1507, Windows 10 1607 and 17 more 2024-11-18 7.8 High
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2021-42275 1 Microsoft 21 Windows 10, Windows 10 1507, Windows 10 1607 and 18 more 2024-11-18 8.8 High
Microsoft COM for Windows Remote Code Execution Vulnerability
CVE-2020-0911 1 Microsoft 19 Windows 10, Windows 10 1507, Windows 10 1607 and 16 more 2024-11-18 7.8 High
<p>An elevation of privilege vulnerability exists when Windows Modules Installer improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in an elevated context.</p> <p>An attacker could exploit this vulnerability by running a specially crafted application on the victim system.</p> <p>The update addresses the vulnerability by correcting the way the Windows Modules Installer handles objects in memory.</p>
CVE-2020-0998 1 Microsoft 14 Windows 10, Windows 10 1607, Windows 10 1803 and 11 more 2024-11-18 7.8 High
<p>An elevation of privilege vulnerability exists when the Windows Graphics Component improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run processes in an elevated context.</p> <p>In a local attack scenario, an attacker could exploit this vulnerability by running a specially crafted application to take control over the affected system.</p> <p>The update addresses the vulnerability by correcting the way in which the Microsoft Graphics Component handles objects in memory and preventing unintended elevation from user mode.</p>