Filtered by vendor Microsoft
Subscriptions
Filtered by product Windows 11
Subscriptions
Total
601 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2023-44216 | 8 Amd, Apple, Canonical and 5 more | 17 Ryzen 5 7600x, Ryzen 7 4800u, M1 Mac Mini and 14 more | 2024-09-24 | 5.3 Medium |
PVRIC (PowerVR Image Compression) on Imagination 2018 and later GPU devices offers software-transparent compression that enables cross-origin pixel-stealing attacks against feTurbulence and feBlend in the SVG Filter specification, aka a GPU.zip issue. For example, attackers can sometimes accurately determine text contained on a web page from one origin if they control a resource from a different origin. | ||||
CVE-2024-7553 | 2 Microsoft, Mongodb | 24 Windows 10 1507, Windows 10 1511, Windows 10 1607 and 21 more | 2024-09-19 | 7.3 High |
Incorrect validation of files loaded from a local untrusted directory may allow local privilege escalation if the underlying operating systems is Windows. This may result in the application executing arbitrary behaviour determined by the contents of untrusted files. This issue affects MongoDB Server v5.0 versions prior to 5.0.27, MongoDB Server v6.0 versions prior to 6.0.16, MongoDB Server v7.0 versions prior to 7.0.12, MongoDB Server v7.3 versions prior 7.3.3, MongoDB C Driver versions prior to 1.26.2 and MongoDB PHP Driver versions prior to 1.18.1. Required Configuration: Only environments with Windows as the underlying operating system is affected by this issue | ||||
CVE-2022-32230 | 1 Microsoft | 3 Windows 10, Windows 11, Windows Server 2019 | 2024-09-16 | 7.5 High |
Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death (BSOD) crash of the Windows kernel. For most systems, this attack requires authentication, except in the special case of Windows Domain Controllers, where unauthenticated users can always open named pipes as long as they can establish an SMB session. Typically, after the BSOD, the victim SMBv3 server will reboot. | ||||
CVE-2022-30202 | 1 Microsoft | 21 Windows 10, Windows 10 1507, Windows 10 1607 and 18 more | 2024-09-12 | 7 High |
Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability | ||||
CVE-2022-30205 | 1 Microsoft | 21 Windows 10, Windows 10 1507, Windows 10 1607 and 18 more | 2024-09-12 | 6.6 Medium |
Windows Group Policy Elevation of Privilege Vulnerability | ||||
CVE-2022-30209 | 1 Microsoft | 21 Windows 10, Windows 10 1507, Windows 10 1607 and 18 more | 2024-09-12 | 7.4 High |
Windows IIS Server Elevation of Privilege Vulnerability | ||||
CVE-2022-30225 | 1 Microsoft | 21 Windows 10, Windows 10 1507, Windows 10 1607 and 18 more | 2024-09-11 | 7.1 High |
Windows Media Player Network Sharing Service Elevation of Privilege Vulnerability | ||||
CVE-2022-22023 | 1 Microsoft | 21 Windows 10, Windows 10 1507, Windows 10 1607 and 18 more | 2024-09-11 | 6.6 Medium |
Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability | ||||
CVE-2022-22024 | 1 Microsoft | 21 Windows 10, Windows 10 1507, Windows 10 1607 and 18 more | 2024-09-11 | 7.8 High |
Windows Fax Service Remote Code Execution Vulnerability | ||||
CVE-2022-22025 | 1 Microsoft | 21 Windows 10, Windows 10 1507, Windows 10 1607 and 18 more | 2024-09-11 | 7.5 High |
Windows Internet Information Services Cachuri Module Denial of Service Vulnerability | ||||
CVE-2022-22037 | 1 Microsoft | 21 Windows 10, Windows 10 1507, Windows 10 1607 and 18 more | 2024-09-11 | 7.5 High |
Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability | ||||
CVE-2022-22041 | 1 Microsoft | 17 Windows 10, Windows 10 1507, Windows 10 1607 and 14 more | 2024-09-11 | 6.8 Medium |
Windows Print Spooler Elevation of Privilege Vulnerability | ||||
CVE-2022-21845 | 1 Microsoft | 21 Windows 10, Windows 10 1507, Windows 10 1607 and 18 more | 2024-09-11 | 4.7 Medium |
Windows Kernel Information Disclosure Vulnerability | ||||
CVE-2022-22034 | 1 Microsoft | 21 Windows 10, Windows 10 1507, Windows 10 1607 and 18 more | 2024-09-11 | 7.8 High |
Windows Graphics Component Elevation of Privilege Vulnerability | ||||
CVE-2022-22043 | 1 Microsoft | 21 Windows 10, Windows 10 1507, Windows 10 1607 and 18 more | 2024-09-11 | 7.8 High |
Windows Fast FAT File System Driver Elevation of Privilege Vulnerability | ||||
CVE-2022-22048 | 1 Microsoft | 21 Windows 10, Windows 10 1507, Windows 10 1607 and 18 more | 2024-09-11 | 6.1 Medium |
BitLocker Security Feature Bypass Vulnerability | ||||
CVE-2022-22050 | 1 Microsoft | 21 Windows 10, Windows 10 1507, Windows 10 1607 and 18 more | 2024-09-10 | 7.8 High |
Windows Fax Service Elevation of Privilege Vulnerability | ||||
CVE-2022-22049 | 1 Microsoft | 21 Windows 10, Windows 10 1507, Windows 10 1607 and 18 more | 2024-09-10 | 7.8 High |
Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability | ||||
CVE-2022-22045 | 1 Microsoft | 13 Windows 10, Windows 10 1507, Windows 10 1607 and 10 more | 2024-09-10 | 7.8 High |
Windows.Devices.Picker.dll Elevation of Privilege Vulnerability | ||||
CVE-2022-22042 | 1 Microsoft | 18 Windows 10, Windows 10 1507, Windows 10 1607 and 15 more | 2024-09-10 | 6.5 Medium |
Windows Hyper-V Information Disclosure Vulnerability |