CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Microsoft : Security Vulnerabilities (CVSS score between 4 and 4.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2021-43221 94 Exec Code 2021-11-24 2021-11-30
4.0
None Remote High Not required Partial Partial None
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
2 CVE-2021-42322 269 2021-11-10 2021-11-15
4.6
None Local Low Not required Partial Partial Partial
Visual Studio Code Elevation of Privilege Vulnerability
3 CVE-2021-42306 668 2021-11-24 2021-11-29
4.0
None Remote Low ??? Partial None None
Azure Active Directory Information Disclosure Vulnerability
4 CVE-2021-42305 2021-11-10 2021-11-15
4.3
None Remote Medium Not required None Partial None
Microsoft Exchange Server Spoofing Vulnerability This CVE ID is unique from CVE-2021-41349.
5 CVE-2021-42300 2021-11-10 2021-11-17
4.6
None Local Low Not required Partial Partial Partial
Azure Sphere Tampering Vulnerability
6 CVE-2021-42286 269 2021-11-10 2021-11-13
4.6
None Local Low Not required Partial Partial Partial
Windows Core Shell SI Host Extension Framework for Composable Shell Elevation of Privilege Vulnerability
7 CVE-2021-42283 269 2021-11-10 2021-11-13
4.6
None Local Low Not required Partial Partial Partial
NTFS Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-41367, CVE-2021-41370.
8 CVE-2021-42280 269 2021-11-10 2021-11-12
4.6
None Local Low Not required Partial Partial Partial
Windows Feedback Hub Elevation of Privilege Vulnerability
9 CVE-2021-42277 269 2021-11-10 2021-11-12
4.6
None Local Low Not required Partial Partial Partial
Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
10 CVE-2021-41379 269 2021-11-10 2021-11-12
4.6
None Local Low Not required Partial Partial Partial
Windows Installer Elevation of Privilege Vulnerability
11 CVE-2021-41377 269 2021-11-10 2021-11-12
4.6
None Local Low Not required Partial Partial Partial
Windows Fast FAT File System Driver Elevation of Privilege Vulnerability
12 CVE-2021-41370 269 2021-11-10 2021-11-12
4.6
None Local Low Not required Partial Partial Partial
NTFS Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-41367, CVE-2021-42283.
13 CVE-2021-41367 269 2021-11-10 2021-11-12
4.6
None Local Low Not required Partial Partial Partial
NTFS Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-41370, CVE-2021-42283.
14 CVE-2021-41366 269 2021-11-10 2021-11-12
4.6
None Local Low Not required Partial Partial Partial
Credential Security Support Provider Protocol (CredSSP) Elevation of Privilege Vulnerability
15 CVE-2021-41363 Bypass 2021-10-13 2021-10-19
4.4
None Local Medium Not required Partial Partial Partial
Intune Management Extension Security Feature Bypass Vulnerability
16 CVE-2021-41357 269 2021-10-13 2021-10-19
4.6
None Local Low Not required Partial Partial Partial
Win32k Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-40449, CVE-2021-40450.
17 CVE-2021-41350 2021-10-13 2021-10-19
4.3
None Remote Medium Not required None Partial None
Microsoft Exchange Server Spoofing Vulnerability
18 CVE-2021-41349 2021-11-10 2021-11-10
4.3
None Remote Medium Not required Partial None None
Microsoft Exchange Server Spoofing Vulnerability This CVE ID is unique from CVE-2021-42305.
19 CVE-2021-41347 269 2021-10-13 2021-10-19
4.6
None Local Low Not required Partial Partial Partial
Windows AppX Deployment Service Elevation of Privilege Vulnerability
20 CVE-2021-41346 Bypass 2021-10-13 2021-10-19
4.6
None Local Low Not required Partial Partial Partial
Console Window Host Security Feature Bypass Vulnerability
21 CVE-2021-41339 269 2021-10-13 2021-10-19
4.6
None Local Low Not required Partial Partial Partial
Microsoft DWM Core Library Elevation of Privilege Vulnerability
22 CVE-2021-41337 Bypass 2021-10-13 2021-10-19
4.0
None Remote Low ??? None Partial None
Active Directory Security Feature Bypass Vulnerability
23 CVE-2021-41334 269 2021-10-13 2021-10-19
4.6
None Local Low Not required Partial Partial Partial
Windows Desktop Bridge Elevation of Privilege Vulnerability
24 CVE-2021-41332 2021-10-13 2021-10-19
4.0
None Remote Low ??? Partial None None
Windows Print Spooler Information Disclosure Vulnerability
25 CVE-2021-40477 269 2021-10-13 2021-10-19
4.6
None Local Low Not required Partial Partial Partial
Windows Event Tracing Elevation of Privilege Vulnerability
26 CVE-2021-40470 269 2021-10-13 2021-10-19
4.6
None Local Low Not required Partial Partial Partial
DirectX Graphics Kernel Elevation of Privilege Vulnerability
27 CVE-2021-40467 269 2021-10-13 2021-10-19
4.6
None Local Low Not required Partial Partial Partial
Windows Common Log File System Driver Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-40443, CVE-2021-40466.
28 CVE-2021-40466 269 2021-10-13 2021-10-19
4.6
None Local Low Not required Partial Partial Partial
Windows Common Log File System Driver Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-40443, CVE-2021-40467.
29 CVE-2021-40463 DoS 2021-10-13 2021-10-19
4.0
None Remote Low ??? None None Partial
Windows NAT Denial of Service Vulnerability
30 CVE-2021-40460 Bypass 2021-10-13 2021-10-19
4.0
None Remote Low ??? None Partial None
Windows Remote Procedure Call Runtime Security Feature Bypass Vulnerability
31 CVE-2021-40457 79 XSS 2021-10-13 2021-10-19
4.3
None Remote Medium Not required None Partial None
Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability
32 CVE-2021-40450 269 2021-10-13 2021-10-19
4.6
None Local Low Not required Partial Partial Partial
Win32k Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-40449, CVE-2021-41357.
33 CVE-2021-40449 269 2021-10-13 2021-11-30
4.6
None Local Low Not required Partial Partial Partial
Win32k Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-40450, CVE-2021-41357.
34 CVE-2021-40448 2021-09-15 2021-09-24
4.3
None Remote Medium Not required Partial None None
Microsoft Accessibility Insights for Android Information Disclosure Vulnerability
35 CVE-2021-40447 269 2021-09-15 2021-09-24
4.6
None Local Low Not required Partial Partial Partial
Windows Print Spooler Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-38667, CVE-2021-38671.
36 CVE-2021-40443 269 2021-10-13 2021-10-19
4.6
None Local Low Not required Partial Partial Partial
Windows Common Log File System Driver Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-40466, CVE-2021-40467.
37 CVE-2021-38671 269 2021-09-15 2021-09-24
4.6
None Local Low Not required Partial Partial Partial
Windows Print Spooler Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-38667, CVE-2021-40447.
38 CVE-2021-38667 269 2021-09-15 2021-09-24
4.6
None Local Low Not required Partial Partial Partial
Windows Print Spooler Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-38671, CVE-2021-40447.
39 CVE-2021-38665 2021-11-10 2021-11-10
4.3
None Remote Medium Not required Partial None None
Remote Desktop Protocol Client Information Disclosure Vulnerability
40 CVE-2021-38662 2021-10-13 2021-10-19
4.9
None Local Low Not required Complete None None
Windows Fast FAT File System Driver Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-41343.
41 CVE-2021-38650 2021-09-15 2021-09-27
4.3
None Remote Medium Not required None Partial None
Microsoft Office Spoofing Vulnerability
42 CVE-2021-38649 269 2021-09-15 2021-09-26
4.6
None Local Low Not required Partial Partial Partial
Open Management Infrastructure Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-38645, CVE-2021-38648.
43 CVE-2021-38648 269 2021-09-15 2021-11-30
4.6
None Local Low Not required Partial Partial Partial
Open Management Infrastructure Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-38645, CVE-2021-38649.
44 CVE-2021-38645 269 2021-09-15 2021-09-26
4.6
None Local Low Not required Partial Partial Partial
Open Management Infrastructure Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-38648, CVE-2021-38649.
45 CVE-2021-38639 269 2021-09-15 2021-09-26
4.6
None Local Low Not required Partial Partial Partial
Win32k Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-36975.
46 CVE-2021-38638 269 2021-09-15 2021-09-26
4.6
None Local Low Not required Partial Partial Partial
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-38628.
47 CVE-2021-38633 269 2021-09-15 2021-09-26
4.6
None Local Low Not required Partial Partial Partial
Windows Common Log File System Driver Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-36955, CVE-2021-36963.
48 CVE-2021-38630 269 2021-09-15 2021-09-26
4.6
None Local Low Not required Partial Partial Partial
Windows Event Tracing Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-36964.
49 CVE-2021-38629 2021-09-15 2021-09-26
4.0
None Remote Low ??? Partial None None
Windows Ancillary Function Driver for WinSock Information Disclosure Vulnerability
50 CVE-2021-38628 269 2021-09-15 2021-09-26
4.6
None Local Low Not required Partial Partial Partial
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-38638.
Total number of vulnerabilities : 1541   Page : 1 (This Page)2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.