CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Microsoft : Security Vulnerabilities

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2021-43209 Exec Code 2021-11-10 2021-11-17
6.8
None Remote Medium Not required Partial Partial Partial
3D Viewer Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-43208.
2 CVE-2021-43208 94 Exec Code 2021-11-10 2021-11-15
6.8
None Remote Medium Not required Partial Partial Partial
3D Viewer Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-43209.
3 CVE-2021-42323 668 2021-11-10 2021-11-15
2.1
None Local Low Not required Partial None None
Azure RTOS Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-26444, CVE-2021-42301.
4 CVE-2021-42322 269 2021-11-10 2021-11-15
4.6
None Local Low Not required Partial Partial Partial
Visual Studio Code Elevation of Privilege Vulnerability
5 CVE-2021-42321 Exec Code 2021-11-10 2021-11-10
6.5
None Remote Low ??? Partial Partial Partial
Microsoft Exchange Server Remote Code Execution Vulnerability
6 CVE-2021-42319 269 2021-11-10 2021-11-15
2.1
None Local Low Not required None None Partial
Visual Studio Elevation of Privilege Vulnerability
7 CVE-2021-42316 Exec Code 2021-11-10 2021-11-15
6.5
None Remote Low ??? Partial Partial Partial
Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerability
8 CVE-2021-42305 2021-11-10 2021-11-15
4.3
None Remote Medium Not required None Partial None
Microsoft Exchange Server Spoofing Vulnerability This CVE ID is unique from CVE-2021-41349.
9 CVE-2021-42304 269 2021-11-10 2021-11-15
7.2
None Local Low Not required Complete Complete Complete
Azure RTOS Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-42302, CVE-2021-42303.
10 CVE-2021-42303 269 2021-11-10 2021-11-15
7.2
None Local Low Not required Complete Complete Complete
Azure RTOS Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-42302, CVE-2021-42304.
11 CVE-2021-42302 269 2021-11-10 2021-11-15
7.2
None Local Low Not required Complete Complete Complete
Azure RTOS Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-42303, CVE-2021-42304.
12 CVE-2021-42301 668 2021-11-10 2021-11-17
2.1
None Local Low Not required Partial None None
Azure RTOS Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-26444, CVE-2021-42323.
13 CVE-2021-42300 2021-11-10 2021-11-17
4.6
None Local Low Not required Partial Partial Partial
Azure Sphere Tampering Vulnerability
14 CVE-2021-42298 94 Exec Code 2021-11-10 2021-11-17
9.3
None Remote Medium Not required Complete Complete Complete
Microsoft Defender Remote Code Execution Vulnerability
15 CVE-2021-42296 94 Exec Code 2021-11-10 2021-11-13
6.9
None Local Medium Not required Complete Complete Complete
Microsoft Word Remote Code Execution Vulnerability
16 CVE-2021-42292 863 Bypass 2021-11-10 2021-11-10
6.8
None Remote Medium Not required Partial Partial Partial
Microsoft Excel Security Feature Bypass Vulnerability
17 CVE-2021-42291 269 2021-11-10 2021-11-13
6.5
None Remote Low ??? Partial Partial Partial
Active Directory Domain Services Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-42278, CVE-2021-42282, CVE-2021-42287.
18 CVE-2021-42288 863 Bypass 2021-11-10 2021-11-16
3.6
None Local Low Not required Partial Partial None
Windows Hello Security Feature Bypass Vulnerability
19 CVE-2021-42287 269 2021-11-10 2021-11-13
6.5
None Remote Low ??? Partial Partial Partial
Active Directory Domain Services Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-42278, CVE-2021-42282, CVE-2021-42291.
20 CVE-2021-42286 269 2021-11-10 2021-11-13
4.6
None Local Low Not required Partial Partial Partial
Windows Core Shell SI Host Extension Framework for Composable Shell Elevation of Privilege Vulnerability
21 CVE-2021-42285 269 2021-11-10 2021-11-13
7.2
None Local Low Not required Complete Complete Complete
Windows Kernel Elevation of Privilege Vulnerability
22 CVE-2021-42284 400 DoS 2021-11-10 2021-11-13
7.1
None Remote Medium Not required None None Complete
Windows Hyper-V Denial of Service Vulnerability
23 CVE-2021-42283 269 2021-11-10 2021-11-13
4.6
None Local Low Not required Partial Partial Partial
NTFS Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-41367, CVE-2021-41370.
24 CVE-2021-42282 269 2021-11-10 2021-11-13
6.5
None Remote Low ??? Partial Partial Partial
Active Directory Domain Services Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-42278, CVE-2021-42287, CVE-2021-42291.
25 CVE-2021-42280 269 2021-11-10 2021-11-12
4.6
None Local Low Not required Partial Partial Partial
Windows Feedback Hub Elevation of Privilege Vulnerability
26 CVE-2021-42279 787 Mem. Corr. 2021-11-10 2021-11-12
5.1
None Remote High Not required Partial Partial Partial
Chakra Scripting Engine Memory Corruption Vulnerability
27 CVE-2021-42278 269 2021-11-10 2021-11-12
6.5
None Remote Low ??? Partial Partial Partial
Active Directory Domain Services Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-42282, CVE-2021-42287, CVE-2021-42291.
28 CVE-2021-42277 269 2021-11-10 2021-11-12
4.6
None Local Low Not required Partial Partial Partial
Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
29 CVE-2021-42276 Exec Code 2021-11-10 2021-11-12
6.8
None Remote Medium Not required Partial Partial Partial
Microsoft Windows Media Foundation Remote Code Execution Vulnerability
30 CVE-2021-42275 Exec Code 2021-11-10 2021-11-12
6.5
None Remote Low ??? Partial Partial Partial
Microsoft COM for Windows Remote Code Execution Vulnerability
31 CVE-2021-42274 DoS 2021-11-10 2021-11-12
2.1
None Local Low Not required None None Partial
Windows Hyper-V Discrete Device Assignment (DDA) Denial of Service Vulnerability
32 CVE-2021-41379 269 2021-11-10 2021-11-12
4.6
None Local Low Not required Partial Partial Partial
Windows Installer Elevation of Privilege Vulnerability
33 CVE-2021-41378 Exec Code 2021-11-10 2021-11-12
6.5
None Remote Low ??? Partial Partial Partial
Windows NTFS Remote Code Execution Vulnerability
34 CVE-2021-41377 269 2021-11-10 2021-11-12
4.6
None Local Low Not required Partial Partial Partial
Windows Fast FAT File System Driver Elevation of Privilege Vulnerability
35 CVE-2021-41376 2021-11-10 2021-11-10
2.1
None Local Low Not required Partial None None
Azure Sphere Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-41374, CVE-2021-41375.
36 CVE-2021-41375 2021-11-10 2021-11-10
2.1
None Local Low Not required Partial None None
Azure Sphere Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-41374, CVE-2021-41376.
37 CVE-2021-41374 2021-11-10 2021-11-10
2.1
None Local Low Not required Partial None None
Azure Sphere Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-41375, CVE-2021-41376.
38 CVE-2021-41373 2021-11-10 2021-11-10
2.1
None Local Low Not required Partial None None
FSLogix Information Disclosure Vulnerability
39 CVE-2021-41372 352 2021-11-10 2021-11-12
6.8
None Remote Medium Not required Partial Partial Partial
Power BI Report Server Spoofing Vulnerability
40 CVE-2021-41371 2021-11-10 2021-11-10
2.1
None Local Low Not required Partial None None
Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-38631.
41 CVE-2021-41370 269 2021-11-10 2021-11-12
4.6
None Local Low Not required Partial Partial Partial
NTFS Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-41367, CVE-2021-42283.
42 CVE-2021-41368 Exec Code 2021-11-10 2021-11-12
6.8
None Remote Medium Not required Partial Partial Partial
Microsoft Access Remote Code Execution Vulnerability
43 CVE-2021-41367 269 2021-11-10 2021-11-12
4.6
None Local Low Not required Partial Partial Partial
NTFS Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-41370, CVE-2021-42283.
44 CVE-2021-41366 269 2021-11-10 2021-11-12
4.6
None Local Low Not required Partial Partial Partial
Credential Security Support Provider Protocol (CredSSP) Elevation of Privilege Vulnerability
45 CVE-2021-41363 Bypass 2021-10-13 2021-10-19
4.4
None Local Medium Not required Partial Partial Partial
Intune Management Extension Security Feature Bypass Vulnerability
46 CVE-2021-41361 2021-10-13 2021-10-19
3.5
None Remote Medium ??? None Partial None
Active Directory Federation Server Spoofing Vulnerability
47 CVE-2021-41357 269 2021-10-13 2021-10-19
4.6
None Local Low Not required Partial Partial Partial
Win32k Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-40449, CVE-2021-40450.
48 CVE-2021-41356 DoS 2021-11-10 2021-11-10
5.0
None Remote Low Not required None None Partial
Windows Denial of Service Vulnerability
49 CVE-2021-41355 2021-10-13 2021-10-19
2.9
None Local Network Medium Not required Partial None None
.NET Core and Visual Studio Information Disclosure Vulnerability
50 CVE-2021-41354 79 XSS 2021-10-13 2021-10-19
3.5
None Remote Medium ??? None Partial None
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.