Show filters
3,258 Total Results
Displaying 71-80 of 3,258
Sort by:
Attacker Value
Moderate
CVE-2020-1584 - Windows dnsrslvr.dll Elevation of Privilege Vulnerability
Disclosure Date: August 17, 2020 (last updated January 19, 2024)
An elevation of privilege vulnerability exists in the way that the dnsrslvr.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.
To exploit the vulnerability, a locally authenticated attacker could run a specially crafted application.
The security update addresses the vulnerability by ensuring the dnsrslvr.dll properly handles objects in memory.
1
Attacker Value
High
CVE-2020-1247
Disclosure Date: June 09, 2020 (last updated November 28, 2024)
An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1207, CVE-2020-1251, CVE-2020-1253, CVE-2020-1310.
1
Attacker Value
High
CVE-2024-35250
Disclosure Date: June 11, 2024 (last updated January 12, 2025)
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
1
Attacker Value
Very Low
CVE-2024-43452
Disclosure Date: November 12, 2024 (last updated January 06, 2025)
Windows Registry Elevation of Privilege Vulnerability
1
Attacker Value
Unknown
CVE-2017-0022
Disclosure Date: March 17, 2017 (last updated July 03, 2024)
Microsoft XML Core Services (MSXML) in Windows 10 Gold, 1511, and 1607; Windows 7 SP1; Windows 8.1; Windows RT 8.1; Windows Server 2008 SP2 and R2 SP1; Windows Server 2012 Gold and R2; Windows Server 2016; and Windows Vista SP2 improperly handles objects in memory, allowing attackers to test for files on disk via a crafted web site, aka "Microsoft XML Information Disclosure Vulnerability."
1
Attacker Value
Unknown
CVE-2015-2387
Disclosure Date: July 14, 2015 (last updated July 17, 2024)
ATMFD.DLL in the Adobe Type Manager Font Driver in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, aka "ATMFD.DLL Memory Corruption Vulnerability."
1
Attacker Value
Unknown
CVE-2019-0803
Disclosure Date: April 09, 2019 (last updated November 27, 2024)
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0685, CVE-2019-0859.
1
Attacker Value
High
CVE-2019-1415
Disclosure Date: November 12, 2019 (last updated November 27, 2024)
An elevation of privilege vulnerability exists in Windows Installer because of the way Windows Installer handles certain filesystem operations.To exploit the vulnerability, an attacker would require unprivileged execution on the victim system, aka 'Windows Installer Elevation of Privilege Vulnerability'.
1
Attacker Value
Unknown
CVE-2014-4077
Disclosure Date: November 11, 2014 (last updated June 29, 2024)
Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, and Office 2007 SP3, when IMJPDCT.EXE (aka IME for Japanese) is installed, allow remote attackers to bypass a sandbox protection mechanism via a crafted PDF document, aka "Microsoft IME (Japanese) Elevation of Privilege Vulnerability," as exploited in the wild in 2014.
1
Attacker Value
High
CVE-2022-21857
Disclosure Date: January 11, 2022 (last updated November 28, 2024)
Active Directory Domain Services Elevation of Privilege Vulnerability
1
