CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Microsoft » Windows 8.1 » * * * : Security Vulnerabilities

Cpe Name:cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:rt:*:*:*
Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2022-21928 94 Exec Code 2022-01-11 2022-05-23
6.9
None Local Medium Not required Complete Complete Complete
Windows Resilient File System (ReFS) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21892, CVE-2022-21958, CVE-2022-21959, CVE-2022-21960, CVE-2022-21961, CVE-2022-21962, CVE-2022-21963.
2 CVE-2022-21924 Bypass 2022-01-11 2022-05-23
5.4
None Remote High Not required Complete None None
Workstation Service Remote Protocol Security Feature Bypass Vulnerability.
3 CVE-2022-21922 Exec Code 2022-01-11 2022-05-23
9.0
None Remote Low ??? Complete Complete Complete
Remote Procedure Call Runtime Remote Code Execution Vulnerability.
4 CVE-2022-21919 269 2022-01-11 2022-05-23
6.9
None Local Medium Not required Complete Complete Complete
Windows User Profile Service Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21895.
5 CVE-2022-21916 269 2022-01-11 2022-05-23
7.2
None Local Low Not required Complete Complete Complete
Windows Common Log File System Driver Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21897.
6 CVE-2022-21915 668 2022-01-11 2022-05-23
4.0
None Remote Low ??? Partial None None
Windows GDI+ Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-21880.
7 CVE-2022-21895 269 2022-01-11 2022-05-23
7.2
None Local Low Not required Complete Complete Complete
Windows User Profile Service Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21919.
8 CVE-2022-21894 Bypass 2022-01-11 2022-05-23
4.9
None Local Low Not required None Complete None
Secure Boot Security Feature Bypass Vulnerability.
9 CVE-2022-21893 Exec Code 2022-01-11 2022-05-23
8.5
None Remote Medium ??? Complete Complete Complete
Remote Desktop Protocol Remote Code Execution Vulnerability.
10 CVE-2022-21892 Exec Code 2022-01-11 2022-05-23
7.2
None Local Low Not required Complete Complete Complete
Windows Resilient File System (ReFS) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21928, CVE-2022-21958, CVE-2022-21959, CVE-2022-21960, CVE-2022-21961, CVE-2022-21962, CVE-2022-21963.
11 CVE-2022-21881 269 2022-01-11 2022-05-23
7.2
None Local Low Not required Complete Complete Complete
Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21879.
12 CVE-2022-21880 668 2022-01-11 2022-05-23
7.8
None Remote Low Not required Complete None None
Windows GDI+ Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-21915.
13 CVE-2022-21875 269 2022-01-11 2022-05-23
7.2
None Local Low Not required Complete Complete Complete
Windows Storage Elevation of Privilege Vulnerability.
14 CVE-2022-21868 269 2022-01-11 2022-05-23
6.9
None Local Medium Not required Complete Complete Complete
Windows Devices Human Interface Elevation of Privilege Vulnerability.
15 CVE-2022-21867 269 2022-01-11 2022-05-23
6.9
None Local Medium Not required Complete Complete Complete
Windows Push Notifications Apps Elevation Of Privilege Vulnerability.
16 CVE-2022-21864 269 2022-01-11 2022-05-23
4.4
None Local Medium Not required Partial Partial Partial
Windows UI Immersive Server API Elevation of Privilege Vulnerability.
17 CVE-2022-21862 269 2022-01-11 2022-05-23
6.9
None Local Medium Not required Complete Complete Complete
Windows Application Model Core API Elevation of Privilege Vulnerability.
18 CVE-2022-21859 269 2022-01-11 2022-05-23
6.9
None Local Medium Not required Complete Complete Complete
Windows Accounts Control Elevation of Privilege Vulnerability.
19 CVE-2022-21857 269 2022-01-11 2022-05-23
9.0
None Remote Low ??? Complete Complete Complete
Active Directory Domain Services Elevation of Privilege Vulnerability.
20 CVE-2022-21851 Exec Code 2022-01-11 2022-05-23
9.3
None Remote Medium Not required Complete Complete Complete
Remote Desktop Client Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21850.
21 CVE-2022-21850 Exec Code 2022-01-11 2022-05-23
9.3
None Remote Medium Not required Complete Complete Complete
Remote Desktop Client Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21851.
22 CVE-2022-21848 400 DoS 2022-01-11 2022-05-23
7.1
None Remote Medium Not required None None Complete
Windows IKE Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-21843, CVE-2022-21883, CVE-2022-21889, CVE-2022-21890.
23 CVE-2022-21843 400 DoS 2022-01-11 2022-05-23
4.3
None Remote Medium Not required None None Partial
Windows IKE Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-21848, CVE-2022-21883, CVE-2022-21889, CVE-2022-21890.
24 CVE-2022-21838 59 2022-01-11 2022-05-23
7.2
None Local Low Not required Complete Complete Complete
Windows Cleanup Manager Elevation of Privilege Vulnerability.
25 CVE-2022-21836 295 2022-01-11 2022-05-23
7.2
None Local Low Not required Complete Complete Complete
Windows Certificate Spoofing Vulnerability.
26 CVE-2022-21835 269 2022-01-11 2022-05-23
7.2
None Local Low Not required Complete Complete Complete
Microsoft Cryptographic Services Elevation of Privilege Vulnerability.
27 CVE-2022-21834 269 2022-01-11 2022-05-23
7.2
None Local Low Not required Complete Complete Complete
Windows User-mode Driver Framework Reflector Driver Elevation of Privilege Vulnerability.
28 CVE-2022-21833 269 2022-01-11 2022-05-23
7.2
None Local Low Not required Complete Complete Complete
Virtual Machine IDE Drive Elevation of Privilege Vulnerability.
29 CVE-2018-8438 20 DoS 2018-09-13 2018-11-02
6.8
None Remote Low ??? None None Complete
A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system, aka "Windows Hyper-V Denial of Service Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-8436, CVE-2018-8437.
30 CVE-2018-8434 200 +Info 2018-09-13 2021-09-13
5.2
None Local Network Medium ??? Complete None None
An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka "Windows Hyper-V Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.
31 CVE-2018-8433 200 +Info 2018-09-13 2018-11-20
1.9
None Local Medium Not required Partial None None
An information disclosure vulnerability exists when the Windows Graphics component improperly handles objects in memory, aka "Microsoft Graphics Component Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.
32 CVE-2018-8424 200 +Info 2018-09-13 2018-12-13
4.3
None Remote Medium Not required Partial None None
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-8422.
33 CVE-2018-8420 611 Exec Code 2018-09-13 2018-11-19
9.3
None Remote Medium Not required Complete Complete Complete
A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka "MS XML Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.
34 CVE-2018-8393 Exec Code Overflow 2018-09-13 2020-08-24
9.3
None Remote Medium Not required Complete Complete Complete
A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system, aka "Microsoft JET Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-8392.
35 CVE-2018-8392 Exec Code Overflow 2018-09-13 2020-08-24
9.3
None Remote Medium Not required Complete Complete Complete
A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system, aka "Microsoft JET Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-8393.
36 CVE-2018-8335 DoS 2018-09-13 2020-08-24
7.8
None Remote Low Not required None None Complete
A denial of service vulnerability exists in the Microsoft Server Block Message (SMB) when an attacker sends specially crafted requests to the server, aka "Windows SMB Denial of Service Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers.
37 CVE-2018-8333 404 2018-10-10 2019-10-03
6.9
None Local Medium Not required Complete Complete Complete
An Elevation of Privilege vulnerability exists in Filter Manager when it improperly handles objects in memory, aka "Microsoft Filter Manager Elevation Of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.
38 CVE-2018-8332 Exec Code 2018-09-13 2019-10-03
9.3
None Remote Medium Not required Complete Complete Complete
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka "Win32k Graphics Remote Code Execution Vulnerability." This affects Windows 7, Microsoft Office, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers.
39 CVE-2018-8330 200 +Info 2018-10-10 2018-11-23
2.1
None Local Low Not required Partial None None
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.
Total number of vulnerabilities : 39   Page : 1 (This Page)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.