CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Microsoft : Security Vulnerabilities (CVSS score between 2 and 5.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2022-21964 668 2022-01-11 2022-01-21
4.9
None Local Low Not required Complete None None
Remote Desktop Licensing Diagnoser Information Disclosure Vulnerability.
2 CVE-2022-21954 269 2022-01-11 2022-01-20
5.8
None Remote Medium Not required Partial Partial None
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21970.
3 CVE-2022-21932 79 XSS 2022-01-11 2022-01-20
3.5
None Remote Medium ??? None Partial None
Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability.
4 CVE-2022-21931 Exec Code 2022-01-11 2022-01-20
4.0
None Remote High Not required Partial Partial None
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21929, CVE-2022-21930.
5 CVE-2022-21930 Exec Code 2022-01-11 2022-01-20
4.0
None Remote High Not required Partial Partial None
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21929, CVE-2022-21931.
6 CVE-2022-21929 Exec Code 2022-01-11 2022-01-20
2.6
None Remote High Not required None Partial None
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21930, CVE-2022-21931.
7 CVE-2022-21925 Bypass 2022-01-11 2022-01-21
5.4
None Remote High Not required Complete None None
Windows BackupKey Remote Protocol Security Feature Bypass Vulnerability.
8 CVE-2022-21924 Bypass 2022-01-11 2022-01-21
5.4
None Remote High Not required Complete None None
Workstation Service Remote Protocol Security Feature Bypass Vulnerability.
9 CVE-2022-21921 Bypass 2022-01-11 2022-01-21
4.9
None Local Low Not required Complete None None
Windows Defender Credential Guard Security Feature Bypass Vulnerability.
10 CVE-2022-21918 400 DoS 2022-01-11 2022-01-19
4.9
None Local Low Not required None None Complete
DirectX Graphics Kernel File Denial of Service Vulnerability.
11 CVE-2022-21915 668 2022-01-11 2022-01-19
4.0
None Remote Low ??? Partial None None
Windows GDI+ Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-21880.
12 CVE-2022-21913 863 Bypass 2022-01-11 2022-01-19
5.0
None Remote Low Not required Partial None None
Local Security Authority (Domain Policy) Remote Protocol Security Feature Bypass.
13 CVE-2022-21910 269 2022-01-11 2022-01-19
4.6
None Local Low Not required Partial Partial Partial
Microsoft Cluster Port Driver Elevation of Privilege Vulnerability.
14 CVE-2022-21906 Bypass 2022-01-11 2022-01-19
2.1
None Local Low Not required None Partial None
Windows Defender Application Control Security Feature Bypass Vulnerability.
15 CVE-2022-21905 Bypass 2022-01-11 2022-01-19
4.9
None Local Network Medium ??? Partial Partial Partial
Windows Hyper-V Security Feature Bypass Vulnerability. This CVE ID is unique from CVE-2022-21900.
16 CVE-2022-21904 668 2022-01-11 2022-01-19
5.0
None Remote Low Not required Partial None None
Windows GDI Information Disclosure Vulnerability.
17 CVE-2022-21900 Bypass 2022-01-11 2022-01-19
3.8
None Local Network Medium ??? None Partial Partial
Windows Hyper-V Security Feature Bypass Vulnerability. This CVE ID is unique from CVE-2022-21905.
18 CVE-2022-21899 863 Bypass 2022-01-11 2022-01-19
4.9
None Local Low Not required None None Complete
Windows Extensible Firmware Interface Security Feature Bypass Vulnerability.
19 CVE-2022-21894 Bypass 2022-01-11 2022-01-19
4.9
None Local Low Not required None Complete None
Secure Boot Security Feature Bypass Vulnerability.
20 CVE-2022-21891 2022-01-11 2022-01-19
4.3
None Remote Medium Not required None Partial None
Microsoft Dynamics 365 (on-premises) Spoofing Vulnerability.
21 CVE-2022-21890 DoS 2022-01-11 2022-01-19
4.3
None Remote Medium Not required None None Partial
Windows IKE Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-21843, CVE-2022-21848, CVE-2022-21883, CVE-2022-21889.
22 CVE-2022-21889 DoS 2022-01-11 2022-01-19
4.3
None Remote Medium Not required None None Partial
Windows IKE Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-21843, CVE-2022-21848, CVE-2022-21883, CVE-2022-21890.
23 CVE-2022-21877 125 2022-01-11 2022-01-18
4.9
None Local Low Not required Complete None None
Storage Spaces Controller Information Disclosure Vulnerability.
24 CVE-2022-21876 125 2022-01-11 2022-01-18
4.9
None Local Low Not required Complete None None
Win32k Information Disclosure Vulnerability.
25 CVE-2022-21866 269 2022-01-11 2022-01-18
4.4
None Local Medium Not required Partial Partial Partial
Windows System Launcher Elevation of Privilege Vulnerability.
26 CVE-2022-21865 269 2022-01-11 2022-01-18
4.4
None Local Medium Not required Partial Partial Partial
Connected Devices Platform Service Elevation of Privilege Vulnerability.
27 CVE-2022-21864 269 2022-01-11 2022-01-18
4.4
None Local Medium Not required Partial Partial Partial
Windows UI Immersive Server API Elevation of Privilege Vulnerability.
28 CVE-2022-21860 269 2022-01-11 2022-01-18
4.4
None Local Medium Not required Partial Partial Partial
Windows AppContracts API Server Elevation of Privilege Vulnerability.
29 CVE-2022-21847 400 DoS 2022-01-11 2022-01-14
4.9
None Local Low Not required None None Complete
Windows Hyper-V Denial of Service Vulnerability.
30 CVE-2022-21843 400 DoS 2022-01-11 2022-01-14
4.3
None Remote Medium Not required None None Partial
Windows IKE Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-21848, CVE-2022-21883, CVE-2022-21889, CVE-2022-21890.
31 CVE-2022-21839 400 DoS 2022-01-11 2022-01-14
2.1
None Local Low Not required None None Partial
Windows Event Tracing Discretionary Access Control List Denial of Service Vulnerability.
32 CVE-2021-43908 2021-12-15 2022-01-01
4.3
None Remote Medium Not required None Partial None
Visual Studio Code Spoofing Vulnerability
33 CVE-2021-43896 2021-12-15 2022-01-01
4.3
None Remote Medium Not required None Partial None
Microsoft PowerShell Spoofing Vulnerability
34 CVE-2021-43892 2021-12-15 2022-01-01
4.3
None Remote Medium Not required Partial None None
Microsoft BizTalk ESB Toolkit Spoofing Vulnerability
35 CVE-2021-43888 668 2021-12-15 2022-01-01
5.0
None Remote Low Not required Partial None None
Microsoft Defender for IoT Information Disclosure Vulnerability
36 CVE-2021-43883 269 2021-12-15 2022-01-01
4.6
None Local Low Not required Partial Partial Partial
Windows Installer Elevation of Privilege Vulnerability
37 CVE-2021-43880 269 2021-12-15 2022-01-01
3.6
None Local Low Not required None Partial Partial
Windows Mobile Device Management Elevation of Privilege Vulnerability
38 CVE-2021-43877 269 2021-12-15 2022-01-01
4.6
None Local Low Not required Partial Partial Partial
ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability
39 CVE-2021-43255 2021-12-15 2022-01-01
4.3
None Remote Medium Not required None Partial None
Microsoft Office Trust Center Spoofing Vulnerability
40 CVE-2021-43248 269 2021-12-15 2022-01-01
4.6
None Local Low Not required Partial Partial Partial
Windows Digital Media Receiver Elevation of Privilege Vulnerability
41 CVE-2021-43246 400 DoS 2021-12-15 2022-01-01
4.9
None Local Low Not required None None Complete
Windows Hyper-V Denial of Service Vulnerability
42 CVE-2021-43245 269 2021-12-15 2022-01-01
4.6
None Local Low Not required Partial Partial Partial
Windows Digital TV Tuner Elevation of Privilege Vulnerability
43 CVE-2021-43244 2021-12-15 2021-12-29
4.9
None Local Low Not required Complete None None
Windows Kernel Information Disclosure Vulnerability
44 CVE-2021-43243 2021-12-15 2022-01-01
2.1
None Local Low Not required Partial None None
VP9 Video Extensions Information Disclosure Vulnerability
45 CVE-2021-43242 20 2021-12-15 2021-12-29
3.5
None Remote Medium ??? None Partial None
Microsoft SharePoint Server Spoofing Vulnerability This CVE ID is unique from CVE-2021-42320.
46 CVE-2021-43240 269 2021-12-15 2021-12-29
4.6
None Local Low Not required Partial Partial Partial
NTFS Set Short Name Elevation of Privilege Vulnerability
47 CVE-2021-43239 269 2021-12-15 2021-12-29
4.6
None Local Low Not required Partial Partial Partial
Windows Recovery Environment Agent Elevation of Privilege Vulnerability
48 CVE-2021-43237 269 2021-12-15 2022-01-06
4.6
None Local Low Not required Partial Partial Partial
Windows Setup Elevation of Privilege Vulnerability
49 CVE-2021-43236 2021-12-15 2021-12-29
5.0
None Remote Low Not required Partial None None
Microsoft Message Queuing Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-43222.
50 CVE-2021-43235 668 2021-12-15 2021-12-29
2.1
None Local Low Not required Partial None None
Storage Spaces Controller Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-43227.
Total number of vulnerabilities : 3323   Page : 1 (This Page)2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.