CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Microsoft » Windows 7 : Security Vulnerabilities (CVSS score between 7 and 7.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2021-42285 269 2021-11-10 2021-11-13
7.2
None Local Low Not required Complete Complete Complete
Windows Kernel Elevation of Privilege Vulnerability
2 CVE-2021-41335 269 2021-10-13 2021-10-19
7.2
None Local Low Not required Complete Complete Complete
Windows Kernel Elevation of Privilege Vulnerability
3 CVE-2021-40489 269 2021-10-13 2021-10-19
7.2
None Local Low Not required Complete Complete Complete
Storage Spaces Controller Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-26441, CVE-2021-40478, CVE-2021-40488, CVE-2021-41345.
4 CVE-2021-36965 Exec Code 2021-09-15 2021-09-25
7.5
None Remote Low Not required Partial Partial Partial
Windows WLAN AutoConfig Service Remote Code Execution Vulnerability
5 CVE-2021-36936 Exec Code 2021-08-12 2021-08-20
7.5
None Remote Low Not required Partial Partial Partial
Windows Print Spooler Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-36947, CVE-2021-36958.
6 CVE-2021-34514 269 2021-07-14 2021-07-20
7.2
None Local Low Not required Complete Complete Complete
Windows Kernel Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-31979, CVE-2021-33771.
7 CVE-2021-34498 269 2021-07-14 2021-07-19
7.2
None Local Low Not required Complete Complete Complete
Windows GDI Elevation of Privilege Vulnerability
8 CVE-2021-33757 Bypass 2021-07-14 2021-07-17
7.5
None Remote Low Not required Partial Partial Partial
Windows Security Account Manager Remote Protocol Security Feature Bypass Vulnerability
9 CVE-2021-31979 269 2021-07-14 2021-07-17
7.2
None Local Low Not required Complete Complete Complete
Windows Kernel Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-33771, CVE-2021-34514.
10 CVE-2021-31962 Bypass 2021-06-08 2021-06-17
7.5
None Remote Low Not required Partial Partial Partial
Kerberos AppContainer Security Feature Bypass Vulnerability
11 CVE-2021-31954 269 2021-06-08 2021-06-15
7.2
None Local Low Not required Complete Complete Complete
Windows Common Log File System Driver Elevation of Privilege Vulnerability
12 CVE-2021-26901 269 2021-03-11 2021-09-13
7.2
None Local Low Not required Complete Complete Complete
Windows Event Tracing Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-26872, CVE-2021-26898.
13 CVE-2021-26899 269 2021-03-11 2021-09-13
7.2
None Local Low Not required Complete Complete Complete
Windows UPnP Device Host Elevation of Privilege Vulnerability
14 CVE-2021-26898 269 2021-03-11 2021-09-13
7.2
None Local Low Not required Complete Complete Complete
Windows Event Tracing Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-26872, CVE-2021-26901.
15 CVE-2021-26862 269 2021-03-11 2021-03-22
7.2
None Local Low Not required Complete Complete Complete
Windows Installer Elevation of Privilege Vulnerability
16 CVE-2021-24094 Exec Code 2021-02-25 2021-03-02
7.5
None Remote Low Not required Partial Partial Partial
Windows TCP/IP Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-24074.
17 CVE-2021-24077 Exec Code 2021-02-25 2021-03-04
7.5
None Remote Low Not required Partial Partial Partial
Windows Fax Service Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-1722.
18 CVE-2021-24074 Exec Code 2021-02-25 2021-03-02
7.5
None Remote Low Not required Partial Partial Partial
Windows TCP/IP Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-24094.
19 CVE-2021-1722 Exec Code 2021-02-25 2021-03-03
7.5
None Remote Low Not required Partial Partial Partial
Windows Fax Service Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-24077.
20 CVE-2021-1709 269 2021-01-12 2021-01-21
7.2
None Local Low Not required Complete Complete Complete
Windows Win32k Elevation of Privilege Vulnerability
21 CVE-2021-1704 269 2021-01-12 2021-01-21
7.2
None Local Low Not required Complete Complete Complete
Windows Hyper-V Elevation of Privilege Vulnerability
22 CVE-2021-1702 269 2021-01-12 2021-01-20
7.2
None Local Low Not required Complete Complete Complete
Windows Remote Procedure Call Runtime Elevation of Privilege Vulnerability
23 CVE-2021-1695 269 2021-01-12 2021-03-04
7.2
None Local Low Not required Complete Complete Complete
Windows Print Spooler Elevation of Privilege Vulnerability
24 CVE-2021-1694 269 2021-01-12 2021-01-20
7.5
None Remote Low Not required Partial Partial Partial
Windows Update Stack Elevation of Privilege Vulnerability
25 CVE-2021-1693 269 2021-01-12 2021-01-20
7.2
None Local Low Not required Complete Complete Complete
Windows CSC Service Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-1652, CVE-2021-1653, CVE-2021-1654, CVE-2021-1655, CVE-2021-1659, CVE-2021-1688.
26 CVE-2021-1657 269 Exec Code 2021-01-12 2021-01-19
7.2
None Local Low Not required Complete Complete Complete
Windows Fax Compose Form Remote Code Execution Vulnerability
27 CVE-2021-1655 269 2021-01-12 2021-01-14
7.2
None Local Low Not required Complete Complete Complete
Windows CSC Service Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-1652, CVE-2021-1653, CVE-2021-1654, CVE-2021-1659, CVE-2021-1688, CVE-2021-1693.
28 CVE-2021-1654 269 2021-01-12 2021-01-14
7.2
None Local Low Not required Complete Complete Complete
Windows CSC Service Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-1652, CVE-2021-1653, CVE-2021-1655, CVE-2021-1659, CVE-2021-1688, CVE-2021-1693.
29 CVE-2021-1653 269 2021-01-12 2021-01-14
7.2
None Local Low Not required Complete Complete Complete
Windows CSC Service Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-1652, CVE-2021-1654, CVE-2021-1655, CVE-2021-1659, CVE-2021-1688, CVE-2021-1693.
30 CVE-2021-1652 269 2021-01-12 2021-01-14
7.2
None Local Low Not required Complete Complete Complete
Windows CSC Service Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-1653, CVE-2021-1654, CVE-2021-1655, CVE-2021-1659, CVE-2021-1688, CVE-2021-1693.
31 CVE-2021-1649 269 2021-01-12 2021-01-15
7.2
None Local Low Not required Complete Complete Complete
Active Template Library Elevation of Privilege Vulnerability
32 CVE-2020-17087 269 2020-11-11 2021-07-21
7.2
None Local Low Not required Complete Complete Complete
Windows Kernel Local Elevation of Privilege Vulnerability
33 CVE-2020-17068 Exec Code 2020-11-11 2020-11-23
7.2
None Local Low Not required Complete Complete Complete
Windows GDI+ Remote Code Execution Vulnerability
34 CVE-2020-17047 DoS 2020-11-11 2020-11-19
7.8
None Remote Low Not required None None Complete
Windows Network File System Denial of Service Vulnerability
35 CVE-2020-17038 269 2020-11-11 2021-07-21
7.2
None Local Low Not required Complete Complete Complete
Win32k Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-17010.
36 CVE-2020-17011 269 2020-11-11 2021-07-21
7.2
None Local Low Not required Complete Complete Complete
Windows Port Class Library Elevation of Privilege Vulnerability
37 CVE-2020-16964 269 2020-12-10 2021-07-21
7.2
None Local Low Not required Complete Complete Complete
Windows Backup Engine Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-16958, CVE-2020-16959, CVE-2020-16960, CVE-2020-16961, CVE-2020-16962, CVE-2020-16963.
38 CVE-2020-16963 269 2020-12-10 2021-07-21
7.2
None Local Low Not required Complete Complete Complete
Windows Backup Engine Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-16958, CVE-2020-16959, CVE-2020-16960, CVE-2020-16961, CVE-2020-16962, CVE-2020-16964.
39 CVE-2020-16962 269 2020-12-10 2021-07-21
7.2
None Local Low Not required Complete Complete Complete
Windows Backup Engine Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-16958, CVE-2020-16959, CVE-2020-16960, CVE-2020-16961, CVE-2020-16963, CVE-2020-16964.
40 CVE-2020-16961 269 2020-12-10 2021-07-21
7.2
None Local Low Not required Complete Complete Complete
Windows Backup Engine Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-16958, CVE-2020-16959, CVE-2020-16960, CVE-2020-16962, CVE-2020-16963, CVE-2020-16964.
41 CVE-2020-16960 269 2020-12-10 2021-07-21
7.2
None Local Low Not required Complete Complete Complete
Windows Backup Engine Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-16958, CVE-2020-16959, CVE-2020-16961, CVE-2020-16962, CVE-2020-16963, CVE-2020-16964.
42 CVE-2020-16959 269 2020-12-10 2021-07-21
7.2
None Local Low Not required Complete Complete Complete
Windows Backup Engine Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-16958, CVE-2020-16960, CVE-2020-16961, CVE-2020-16962, CVE-2020-16963, CVE-2020-16964.
43 CVE-2020-16958 269 2020-12-10 2021-07-21
7.2
None Local Low Not required Complete Complete Complete
Windows Backup Engine Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-16959, CVE-2020-16960, CVE-2020-16961, CVE-2020-16962, CVE-2020-16963, CVE-2020-16964.
44 CVE-2020-16935 269 2020-10-16 2021-07-21
7.2
None Local Low Not required Complete Complete Complete
An elevation of privilege vulnerability exists when Windows improperly handles COM object creation, aka 'Windows COM Server Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-16916.
45 CVE-2020-16916 269 2020-10-16 2021-07-21
7.2
None Local Low Not required Complete Complete Complete
An elevation of privilege vulnerability exists when Windows improperly handles COM object creation, aka 'Windows COM Server Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-16935.
46 CVE-2020-16902 269 2020-10-16 2020-10-27
7.2
None Local Low Not required Complete Complete Complete
An elevation of privilege vulnerability exists in the Windows Installer when the Windows Installer fails to properly sanitize input leading to an insecure library loading behavior.A locally authenticated attacker could run arbitrary code with elevated system privileges, aka 'Windows Installer Elevation of Privilege Vulnerability'.
47 CVE-2020-16891 20 Exec Code 2020-10-16 2020-10-23
7.2
None Local Low Not required Complete Complete Complete
A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Windows Hyper-V Remote Code Execution Vulnerability'.
48 CVE-2020-16863 DoS 2020-10-16 2020-10-21
7.8
None Remote Low Not required None None Complete
A denial of service vulnerability exists in Windows Remote Desktop Service when an attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Service Denial of Service Vulnerability'.
49 CVE-2020-1587 269 +Priv 2020-08-17 2021-07-21
7.2
None Local Low Not required Complete Complete Complete
An elevation of privilege vulnerability exists when the Windows Ancillary Function Driver for WinSock improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability'.
50 CVE-2020-1584 269 2020-08-17 2021-07-21
7.2
None Local Low Not required Complete Complete Complete
An elevation of privilege vulnerability exists in the way that the dnsrslvr.dll handles objects in memory, aka 'Windows dnsrslvr.dll Elevation of Privilege Vulnerability'.
Total number of vulnerabilities : 501   Page : 1 (This Page)2 3 4 5 6 7 8 9 10 11
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.