Windows Scripting Engine Memory Corruption Vulnerability
Max CVSS
8.8
EPSS Score
0.31%
Published
2023-11-14
Updated
2023-11-20

CVE-2022-41073

Known exploited
Used for ransomware
Windows Print Spooler Elevation of Privilege Vulnerability
Max CVSS
7.8
EPSS Score
0.11%
Published
2022-11-09
Updated
2023-09-06
CISA KEV Added
2022-11-08
Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability
Max CVSS
7.8
EPSS Score
0.04%
Published
2022-07-12
Updated
2023-05-17
Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability
Max CVSS
8.8
EPSS Score
0.04%
Published
2022-07-12
Updated
2023-05-17
iSNS Server Memory Corruption Vulnerability Can Lead to Remote Code Execution
Max CVSS
9.8
EPSS Score
2.26%
Published
2021-12-15
Updated
2022-05-23
Scripting Engine Memory Corruption Vulnerability
Max CVSS
8.8
EPSS Score
28.18%
Published
2021-08-12
Updated
2023-12-28

CVE-2021-34448

Known exploited
Scripting Engine Memory Corruption Vulnerability
Max CVSS
9.3
EPSS Score
94.98%
Published
2021-07-16
Updated
2023-12-28
CISA KEV Added
2021-11-03
Scripting Engine Memory Corruption Vulnerability
Max CVSS
7.8
EPSS Score
0.18%
Published
2021-06-08
Updated
2023-12-30
Windows Scripting Engine Memory Corruption Vulnerability
Max CVSS
8.1
EPSS Score
24.96%
Published
2021-09-15
Updated
2023-12-28
Windows Address Book Remote Code Execution Vulnerability
Max CVSS
7.8
EPSS Score
2.29%
Published
2021-02-25
Updated
2023-12-29
A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights. There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit a malicious webpage. The security update addresses the vulnerability by correcting how Windows Media Foundation handles objects in memory.
Max CVSS
7.8
EPSS Score
1.20%
Published
2020-08-17
Updated
2024-01-19
A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights. There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit a malicious webpage. The security update addresses the vulnerability by correcting how Windows Media Foundation handles objects in memory.
Max CVSS
7.8
EPSS Score
0.18%
Published
2020-08-17
Updated
2024-01-19
A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights. There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit a malicious webpage. The security update addresses the vulnerability by correcting how Windows Media Foundation handles objects in memory.
Max CVSS
7.8
EPSS Score
0.06%
Published
2020-08-17
Updated
2024-01-19
A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights. There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit a malicious webpage. The security update addresses the vulnerability by correcting how Windows Media Foundation handles objects in memory.
Max CVSS
7.8
EPSS Score
0.06%
Published
2020-08-17
Updated
2024-01-19
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted fonts.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely, aka 'Windows Font Library Remote Code Execution Vulnerability'.
Max CVSS
8.8
EPSS Score
7.57%
Published
2020-07-14
Updated
2022-05-03
A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights. There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit a malicious webpage. The security update addresses the vulnerability by correcting how Windows Media Foundation handles objects in memory.
Max CVSS
7.8
EPSS Score
0.06%
Published
2020-08-17
Updated
2024-01-19
An elevation of privilege vulnerability exists when the Windows Kernel API improperly handles registry objects in memory. An attacker who successfully exploited the vulnerability could gain elevated privileges on a targeted system. A locally authenticated attacker could exploit this vulnerability by running a specially crafted application. The security update addresses the vulnerability by helping to ensure that the Windows Kernel API properly handles objects in memory.
Max CVSS
7.8
EPSS Score
5.55%
Published
2020-08-17
Updated
2024-01-19
A remote code execution vulnerability exists when Microsoft Windows OLE fails to properly validate user input, aka 'Windows OLE Remote Code Execution Vulnerability'.
Max CVSS
8.8
EPSS Score
32.11%
Published
2020-06-09
Updated
2021-07-21
A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-1238.
Max CVSS
8.8
EPSS Score
2.11%
Published
2020-06-09
Updated
2021-07-21
A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-1028, CVE-2020-1126, CVE-2020-1136.
Max CVSS
7.8
EPSS Score
0.17%
Published
2020-05-21
Updated
2021-07-21
A remote code execution vulnerability exists in the way that the Microsoft Script Runtime handles objects in memory, aka 'Microsoft Script Runtime Remote Code Execution Vulnerability'.
Max CVSS
9.3
EPSS Score
3.20%
Published
2020-05-21
Updated
2021-07-21

CVE-2020-1054

Known exploited
Public exploit
An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1143.
Max CVSS
7.8
EPSS Score
0.47%
Published
2020-05-21
Updated
2022-04-28
CISA KEV Added
2021-11-03

CVE-2020-1027

Known exploited
An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0913, CVE-2020-1000, CVE-2020-1003.
Max CVSS
7.8
EPSS Score
0.12%
Published
2020-04-15
Updated
2022-09-30
CISA KEV Added
2022-05-23

CVE-2020-1020

Known exploited
A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely, aka 'Adobe Font Manager Library Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0938.
Max CVSS
8.8
EPSS Score
93.47%
Published
2020-04-15
Updated
2022-07-12
CISA KEV Added
2021-11-03

CVE-2020-0938

Known exploited
A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely, aka 'Adobe Font Manager Library Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1020.
Max CVSS
7.8
EPSS Score
94.01%
Published
2020-04-15
Updated
2021-07-21
CISA KEV Added
2021-11-03
204 vulnerabilities found
1 2 3 4 5 6 7 8 9
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!