CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Microsoft : Security Vulnerabilities (CVSS score between 5 and 5.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
51 CVE-2021-31974 DoS 2021-06-08 2021-06-11
5.0
None Remote Low Not required None None Partial
Server for NFS Denial of Service Vulnerability
52 CVE-2021-31968 DoS 2021-06-08 2021-06-11
5.0
None Remote Low Not required None None Partial
Windows Remote Desktop Services Denial of Service Vulnerability
53 CVE-2021-31964 2021-06-08 2021-06-15
5.5
None Remote Low ??? Partial Partial None
Microsoft SharePoint Server Spoofing Vulnerability This CVE ID is unique from CVE-2021-31948, CVE-2021-31950.
54 CVE-2021-31957 DoS 2021-06-08 2021-07-07
5.0
None Remote Low Not required None None Partial
ASP.NET Denial of Service Vulnerability
55 CVE-2021-31950 918 2021-06-08 2021-06-15
5.5
None Remote Low ??? Partial Partial None
Microsoft SharePoint Server Spoofing Vulnerability This CVE ID is unique from CVE-2021-31948, CVE-2021-31964.
56 CVE-2021-31948 20 2021-06-08 2021-06-15
5.5
None Remote Low ??? Partial Partial None
Microsoft SharePoint Server Spoofing Vulnerability This CVE ID is unique from CVE-2021-31950, CVE-2021-31964.
57 CVE-2021-31209 2021-05-11 2021-05-26
5.8
None Remote Medium Not required Partial Partial None
Microsoft Exchange Server Spoofing Vulnerability
58 CVE-2021-31183 DoS 2021-07-14 2021-07-16
5.0
None Remote Low Not required None None Partial
Windows TCP/IP Driver Denial of Service Vulnerability This CVE ID is unique from CVE-2021-33772, CVE-2021-34490.
59 CVE-2021-31172 2021-05-11 2021-05-18
5.8
None Remote Medium Not required Partial Partial None
Microsoft SharePoint Spoofing Vulnerability This CVE ID is unique from CVE-2021-26418, CVE-2021-28478.
60 CVE-2021-28478 2021-05-11 2021-05-18
5.8
None Remote Medium Not required Partial Partial None
Microsoft SharePoint Spoofing Vulnerability This CVE ID is unique from CVE-2021-26418, CVE-2021-31172.
61 CVE-2021-28439 DoS 2021-04-13 2021-04-20
5.0
None Remote Low Not required None None Partial
Windows TCP/IP Driver Denial of Service Vulnerability This CVE ID is unique from CVE-2021-28319.
62 CVE-2021-28324 200 +Info 2021-04-13 2021-04-15
5.0
None Remote Low Not required Partial None None
Windows SMB Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-28325.
63 CVE-2021-28319 DoS 2021-04-13 2021-04-15
5.0
None Remote Low Not required None None Partial
Windows TCP/IP Driver Denial of Service Vulnerability This CVE ID is unique from CVE-2021-28439.
64 CVE-2021-27063 DoS 2021-03-11 2021-09-13
5.0
None Remote Low Not required None None Partial
Windows DNS Server Denial of Service Vulnerability This CVE ID is unique from CVE-2021-26896.
65 CVE-2021-26896 DoS 2021-03-11 2021-03-18
5.0
None Remote Low Not required None None Partial
Windows DNS Server Denial of Service Vulnerability This CVE ID is unique from CVE-2021-27063.
66 CVE-2021-26879 DoS 2021-03-11 2021-03-13
5.0
None Remote Low Not required None None Partial
Windows NAT Denial of Service Vulnerability
67 CVE-2021-26433 2021-08-12 2021-08-18
5.0
None Remote Low Not required Partial None None
Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-36926, CVE-2021-36932, CVE-2021-36933.
68 CVE-2021-26427 Exec Code 2021-10-13 2021-10-19
5.8
None Local Network Low Not required Partial Partial Partial
Microsoft Exchange Server Remote Code Execution Vulnerability
69 CVE-2021-26423 DoS 2021-08-12 2021-08-19
5.0
None Remote Low Not required None None Partial
.NET Core and Visual Studio Denial of Service Vulnerability
70 CVE-2021-26421 2021-05-11 2021-05-18
5.8
None Remote Medium Not required Partial Partial None
Skype for Business and Lync Spoofing Vulnerability
71 CVE-2021-26418 863 2021-05-11 2021-05-18
5.8
None Remote Medium Not required Partial Partial None
Microsoft SharePoint Spoofing Vulnerability This CVE ID is unique from CVE-2021-28478, CVE-2021-31172.
72 CVE-2021-24113 Bypass 2021-02-25 2021-07-08
5.8
None Remote Medium Not required Partial Partial None
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
73 CVE-2021-24104 20 2021-03-11 2021-03-17
5.8
None Remote Medium Not required Partial Partial None
Microsoft SharePoint Spoofing Vulnerability
74 CVE-2021-24086 DoS 2021-02-25 2021-07-14
5.0
None Remote Low Not required None None Partial
Windows TCP/IP Denial of Service Vulnerability
75 CVE-2021-24073 2021-02-25 2021-03-02
5.8
None Remote Medium Not required Partial Partial None
Skype for Business and Lync Spoofing Vulnerability
76 CVE-2021-21125 287 Bypass 2021-02-09 2021-03-08
5.8
None Remote Medium Not required Partial Partial None
Insufficient policy enforcement in File System API in Google Chrome on Windows prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page.
77 CVE-2021-1734 200 +Info 2021-02-25 2021-03-03
5.0
None Remote Low Not required Partial None None
Windows Remote Procedure Call Information Disclosure Vulnerability
78 CVE-2021-1730 2021-02-25 2021-03-03
5.8
None Remote Medium Not required Partial Partial None
Microsoft Exchange Server Spoofing Vulnerability This CVE ID is unique from CVE-2021-24085.
79 CVE-2021-1723 DoS 2021-01-12 2021-07-08
5.0
None Remote Low Not required None None Partial
ASP.NET Core and Visual Studio Denial of Service Vulnerability
80 CVE-2021-1717 20 2021-01-12 2021-01-15
5.8
None Remote Medium Not required Partial Partial None
Microsoft SharePoint Spoofing Vulnerability This CVE ID is unique from CVE-2021-1641.
81 CVE-2021-1678 Bypass 2021-01-12 2021-01-20
5.0
None Remote Low Not required Partial None None
NTLM Security Feature Bypass Vulnerability
82 CVE-2021-1641 20 2021-01-12 2021-01-14
5.8
None Remote Medium Not required Partial Partial None
Microsoft SharePoint Spoofing Vulnerability This CVE ID is unique from CVE-2021-1717.
83 CVE-2020-17153 20 2020-12-10 2021-07-21
5.8
None Remote Medium Not required Partial Partial None
Microsoft Edge for Android Spoofing Vulnerability
84 CVE-2020-17131 787 Mem. Corr. 2020-12-10 2021-03-04
5.1
None Remote High Not required Partial Partial Partial
Chakra Scripting Engine Memory Corruption Vulnerability
85 CVE-2020-17119 2020-12-10 2021-08-30
5.0
None Remote Low Not required Partial None None
Microsoft Outlook Information Disclosure Vulnerability
86 CVE-2020-17081 2020-11-11 2020-11-17
5.0
None Remote Low Not required Partial None None
Microsoft Raw Image Extension Information Disclosure Vulnerability
87 CVE-2020-17063 20 2020-11-11 2021-07-21
5.8
None Remote Medium Not required Partial Partial None
Microsoft Office Online Spoofing Vulnerability
88 CVE-2020-17060 20 2020-11-11 2021-07-21
5.8
None Remote Medium Not required Partial Partial None
Microsoft SharePoint Spoofing Vulnerability This CVE ID is unique from CVE-2020-17015, CVE-2020-17016.
89 CVE-2020-16949 401 DoS 2020-10-16 2020-10-21
5.0
None Remote Low Not required None None Partial
A denial of service vulnerability exists in Microsoft Outlook software when the software fails to properly handle objects in memory, aka 'Microsoft Outlook Denial of Service Vulnerability'.
90 CVE-2020-16898 Exec Code 2020-10-16 2020-10-23
5.8
None Local Network Low Not required Partial Partial Partial
A remote code execution vulnerability exists when the Windows TCP/IP stack improperly handles ICMPv6 Router Advertisement packets, aka 'Windows TCP/IP Remote Code Execution Vulnerability'.
91 CVE-2020-16896 200 +Info 2020-10-16 2021-07-21
5.0
None Remote Low Not required Partial None None
An information disclosure vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability'.
92 CVE-2020-1597 20 DoS 2020-08-17 2021-07-21
5.0
None Remote Low Not required None None Partial
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'.
93 CVE-2020-1501 20 2020-08-17 2021-07-21
5.5
None Remote Low ??? Partial Partial None
A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2020-1499, CVE-2020-1500.
94 CVE-2020-1500 20 2020-08-17 2021-07-21
5.5
None Remote Low ??? Partial Partial None
A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2020-1499, CVE-2020-1501.
95 CVE-2020-1499 20 2020-08-17 2021-07-21
5.5
None Remote Low ??? Partial Partial None
A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2020-1500, CVE-2020-1501.
96 CVE-2020-1469 434 DoS 2020-07-14 2020-07-17
5.0
None Remote Low Not required None None Partial
A denial of service vulnerability exists when the .NET implementation of Bond improperly parses input, aka 'Bond Denial of Service Vulnerability'.
97 CVE-2020-1466 20 DoS 2020-08-17 2021-07-21
5.0
None Remote Low Not required None None Partial
A denial of service vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability'.
98 CVE-2020-1374 119 Exec Code Overflow 2020-07-14 2021-07-21
5.1
None Remote High Not required Partial Partial Partial
A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'.
99 CVE-2020-1343 200 +Info 2020-06-09 2021-07-21
5.0
None Remote Low Not required Partial None None
An information disclosure vulnerability exists in Visual Studio Code Live Share Extension when it exposes tokens in plain text, aka 'Visual Studio Code Live Share Information Disclosure Vulnerability'.
100 CVE-2020-1325 2020-11-11 2020-11-24
5.5
None Remote Low ??? Partial Partial None
Azure DevOps Server and Team Foundation Services Spoofing Vulnerability
Total number of vulnerabilities : 883   Page : 1 2 (This Page)3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.