CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Microsoft : Security Vulnerabilities (CVSS score between 3 and 5.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2022-21964 668 2022-01-11 2022-01-21
4.9
None Local Low Not required Complete None None
Remote Desktop Licensing Diagnoser Information Disclosure Vulnerability.
2 CVE-2022-21954 269 2022-01-11 2022-01-20
5.8
None Remote Medium Not required Partial Partial None
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21970.
3 CVE-2022-21932 79 XSS 2022-01-11 2022-01-20
3.5
None Remote Medium ??? None Partial None
Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability.
4 CVE-2022-21931 Exec Code 2022-01-11 2022-01-20
4.0
None Remote High Not required Partial Partial None
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21929, CVE-2022-21930.
5 CVE-2022-21930 Exec Code 2022-01-11 2022-01-20
4.0
None Remote High Not required Partial Partial None
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21929, CVE-2022-21931.
6 CVE-2022-21925 Bypass 2022-01-11 2022-01-21
5.4
None Remote High Not required Complete None None
Windows BackupKey Remote Protocol Security Feature Bypass Vulnerability.
7 CVE-2022-21924 Bypass 2022-01-11 2022-01-21
5.4
None Remote High Not required Complete None None
Workstation Service Remote Protocol Security Feature Bypass Vulnerability.
8 CVE-2022-21921 Bypass 2022-01-11 2022-01-21
4.9
None Local Low Not required Complete None None
Windows Defender Credential Guard Security Feature Bypass Vulnerability.
9 CVE-2022-21918 400 DoS 2022-01-11 2022-01-19
4.9
None Local Low Not required None None Complete
DirectX Graphics Kernel File Denial of Service Vulnerability.
10 CVE-2022-21915 668 2022-01-11 2022-01-19
4.0
None Remote Low ??? Partial None None
Windows GDI+ Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-21880.
11 CVE-2022-21913 863 Bypass 2022-01-11 2022-01-19
5.0
None Remote Low Not required Partial None None
Local Security Authority (Domain Policy) Remote Protocol Security Feature Bypass.
12 CVE-2022-21910 269 2022-01-11 2022-01-19
4.6
None Local Low Not required Partial Partial Partial
Microsoft Cluster Port Driver Elevation of Privilege Vulnerability.
13 CVE-2022-21905 Bypass 2022-01-11 2022-01-19
4.9
None Local Network Medium ??? Partial Partial Partial
Windows Hyper-V Security Feature Bypass Vulnerability. This CVE ID is unique from CVE-2022-21900.
14 CVE-2022-21904 668 2022-01-11 2022-01-19
5.0
None Remote Low Not required Partial None None
Windows GDI Information Disclosure Vulnerability.
15 CVE-2022-21900 Bypass 2022-01-11 2022-01-19
3.8
None Local Network Medium ??? None Partial Partial
Windows Hyper-V Security Feature Bypass Vulnerability. This CVE ID is unique from CVE-2022-21905.
16 CVE-2022-21899 863 Bypass 2022-01-11 2022-01-19
4.9
None Local Low Not required None None Complete
Windows Extensible Firmware Interface Security Feature Bypass Vulnerability.
17 CVE-2022-21894 Bypass 2022-01-11 2022-01-19
4.9
None Local Low Not required None Complete None
Secure Boot Security Feature Bypass Vulnerability.
18 CVE-2022-21891 2022-01-11 2022-01-19
4.3
None Remote Medium Not required None Partial None
Microsoft Dynamics 365 (on-premises) Spoofing Vulnerability.
19 CVE-2022-21890 DoS 2022-01-11 2022-01-19
4.3
None Remote Medium Not required None None Partial
Windows IKE Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-21843, CVE-2022-21848, CVE-2022-21883, CVE-2022-21889.
20 CVE-2022-21889 DoS 2022-01-11 2022-01-19
4.3
None Remote Medium Not required None None Partial
Windows IKE Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-21843, CVE-2022-21848, CVE-2022-21883, CVE-2022-21890.
21 CVE-2022-21877 125 2022-01-11 2022-01-18
4.9
None Local Low Not required Complete None None
Storage Spaces Controller Information Disclosure Vulnerability.
22 CVE-2022-21876 125 2022-01-11 2022-01-18
4.9
None Local Low Not required Complete None None
Win32k Information Disclosure Vulnerability.
23 CVE-2022-21866 269 2022-01-11 2022-01-18
4.4
None Local Medium Not required Partial Partial Partial
Windows System Launcher Elevation of Privilege Vulnerability.
24 CVE-2022-21865 269 2022-01-11 2022-01-18
4.4
None Local Medium Not required Partial Partial Partial
Connected Devices Platform Service Elevation of Privilege Vulnerability.
25 CVE-2022-21864 269 2022-01-11 2022-01-18
4.4
None Local Medium Not required Partial Partial Partial
Windows UI Immersive Server API Elevation of Privilege Vulnerability.
26 CVE-2022-21860 269 2022-01-11 2022-01-18
4.4
None Local Medium Not required Partial Partial Partial
Windows AppContracts API Server Elevation of Privilege Vulnerability.
27 CVE-2022-21847 400 DoS 2022-01-11 2022-01-14
4.9
None Local Low Not required None None Complete
Windows Hyper-V Denial of Service Vulnerability.
28 CVE-2022-21843 400 DoS 2022-01-11 2022-01-14
4.3
None Remote Medium Not required None None Partial
Windows IKE Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-21848, CVE-2022-21883, CVE-2022-21889, CVE-2022-21890.
29 CVE-2021-43908 2021-12-15 2022-01-01
4.3
None Remote Medium Not required None Partial None
Visual Studio Code Spoofing Vulnerability
30 CVE-2021-43896 2021-12-15 2022-01-01
4.3
None Remote Medium Not required None Partial None
Microsoft PowerShell Spoofing Vulnerability
31 CVE-2021-43892 2021-12-15 2022-01-01
4.3
None Remote Medium Not required Partial None None
Microsoft BizTalk ESB Toolkit Spoofing Vulnerability
32 CVE-2021-43888 668 2021-12-15 2022-01-01
5.0
None Remote Low Not required Partial None None
Microsoft Defender for IoT Information Disclosure Vulnerability
33 CVE-2021-43883 269 2021-12-15 2022-01-01
4.6
None Local Low Not required Partial Partial Partial
Windows Installer Elevation of Privilege Vulnerability
34 CVE-2021-43880 269 2021-12-15 2022-01-01
3.6
None Local Low Not required None Partial Partial
Windows Mobile Device Management Elevation of Privilege Vulnerability
35 CVE-2021-43877 269 2021-12-15 2022-01-01
4.6
None Local Low Not required Partial Partial Partial
ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability
36 CVE-2021-43255 2021-12-15 2022-01-01
4.3
None Remote Medium Not required None Partial None
Microsoft Office Trust Center Spoofing Vulnerability
37 CVE-2021-43248 269 2021-12-15 2022-01-01
4.6
None Local Low Not required Partial Partial Partial
Windows Digital Media Receiver Elevation of Privilege Vulnerability
38 CVE-2021-43246 400 DoS 2021-12-15 2022-01-01
4.9
None Local Low Not required None None Complete
Windows Hyper-V Denial of Service Vulnerability
39 CVE-2021-43245 269 2021-12-15 2022-01-01
4.6
None Local Low Not required Partial Partial Partial
Windows Digital TV Tuner Elevation of Privilege Vulnerability
40 CVE-2021-43244 2021-12-15 2021-12-29
4.9
None Local Low Not required Complete None None
Windows Kernel Information Disclosure Vulnerability
41 CVE-2021-43242 20 2021-12-15 2021-12-29
3.5
None Remote Medium ??? None Partial None
Microsoft SharePoint Server Spoofing Vulnerability This CVE ID is unique from CVE-2021-42320.
42 CVE-2021-43240 269 2021-12-15 2021-12-29
4.6
None Local Low Not required Partial Partial Partial
NTFS Set Short Name Elevation of Privilege Vulnerability
43 CVE-2021-43239 269 2021-12-15 2021-12-29
4.6
None Local Low Not required Partial Partial Partial
Windows Recovery Environment Agent Elevation of Privilege Vulnerability
44 CVE-2021-43237 269 2021-12-15 2022-01-06
4.6
None Local Low Not required Partial Partial Partial
Windows Setup Elevation of Privilege Vulnerability
45 CVE-2021-43236 2021-12-15 2021-12-29
5.0
None Remote Low Not required Partial None None
Microsoft Message Queuing Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-43222.
46 CVE-2021-43233 94 Exec Code 2021-12-15 2021-12-29
5.1
None Remote High Not required Partial Partial Partial
Remote Desktop Client Remote Code Execution Vulnerability
47 CVE-2021-43231 269 2021-12-15 2021-12-29
4.6
None Local Low Not required Partial Partial Partial
Windows NTFS Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-43229, CVE-2021-43230.
48 CVE-2021-43230 269 2021-12-15 2021-12-29
4.6
None Local Low Not required Partial Partial Partial
Windows NTFS Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-43229, CVE-2021-43231.
49 CVE-2021-43229 269 2021-12-15 2021-12-29
4.6
None Local Low Not required Partial Partial Partial
Windows NTFS Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-43230, CVE-2021-43231.
50 CVE-2021-43226 269 2021-12-15 2021-12-29
4.6
None Local Low Not required Partial Partial Partial
Windows Common Log File System Driver Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-43207.
Total number of vulnerabilities : 2711   Page : 1 (This Page)2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.