Show filters
1,371 Total Results
Displaying 51-60 of 1,371
Sort by:
Attacker Value
High

CVE-2021-34481

Disclosure Date: July 16, 2021 (last updated February 23, 2025)
<p>A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p> <p><strong>UPDATE</strong> August 10, 2021: Microsoft has completed the investigation and has released security updates to address this vulnerability. Please see the Security Updates table for the applicable update for your system. We recommend that you install these updates immediately. This security update changes the Point and Print default behavior; please see <a href="https://support.microsoft.com/help/5005652">KB5005652</a>.</p>
1
1
Attacker Value
High

CVE-2022-21874

Disclosure Date: January 11, 2022 (last updated December 21, 2023)
Windows Security Center API Remote Code Execution Vulnerability
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
1
1
Attacker Value
Moderate

CVE-2021-26431

Disclosure Date: August 12, 2021 (last updated February 23, 2025)
Windows Recovery Environment Agent Elevation of Privilege Vulnerability
1
1
Attacker Value
Unknown

CVE-2020-17051

Disclosure Date: November 11, 2020 (last updated November 28, 2024)
Windows Network File System Remote Code Execution Vulnerability
1
0
Attacker Value
Unknown

CVE-2021-26896

Disclosure Date: March 11, 2021 (last updated November 28, 2024)
Windows DNS Server Denial of Service Vulnerability
1
0
Attacker Value
Unknown

CVE-2022-26937

Disclosure Date: May 10, 2022 (last updated November 29, 2024)
Windows Network File System Remote Code Execution Vulnerability
1
0
Attacker Value
Unknown

CVE-2020-1472

Disclosure Date: August 17, 2020 (last updated February 21, 2025)
An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol (MS-NRPC). An attacker who successfully exploited the vulnerability could run a specially crafted application on a device on the network. To exploit the vulnerability, an unauthenticated attacker would be required to use MS-NRPC to connect to a domain controller to obtain domain administrator access. Microsoft is addressing the vulnerability in a phased two-part rollout. These updates address the vulnerability by modifying how Netlogon handles the usage of Netlogon secure channels. For guidelines on how to manage the changes required for this vulnerability and more information on the phased rollout, see How to manage the changes in Netlogon secure channel connections associated with CVE-2020-1472 (updated September 28, 2020). When the second phase of Windows updates become available in Q1 2021, customers…
1
0
Attacker Value
Unknown

CVE-2021-40449

Disclosure Date: October 13, 2021 (last updated February 23, 2025)
Win32k Elevation of Privilege Vulnerability
1
0
Attacker Value
Unknown

CVE-2021-42275

Disclosure Date: November 10, 2021 (last updated November 28, 2024)
Microsoft COM for Windows Remote Code Execution Vulnerability
1
0
Attacker Value
Unknown

CVE-2021-38633

Disclosure Date: September 15, 2021 (last updated February 23, 2025)
Windows Common Log File System Driver Elevation of Privilege Vulnerability
1
0
View More Topics  < Previous  Next >