|
Microsoft : Security Vulnerabilities (CVSS score between 4 and 4.99)
# |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
1 |
CVE-2022-33675 |
|
|
|
2022-07-12 |
2022-07-18 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-30181, CVE-2022-33641, CVE-2022-33642, CVE-2022-33643, CVE-2022-33650, CVE-2022-33651, CVE-2022-33652, CVE-2022-33653, CVE-2022-33654, CVE-2022-33655, CVE-2022-33656, CVE-2022-33657, CVE-2022-33658, CVE-2022-33659, CVE-2022-33660, CVE-2022-33661, CVE-2022-33662, CVE-2022-33663, CVE-2022-33664, CVE-2022-33665, CVE-2022-33666, CVE-2022-33667, CVE-2022-33668, CVE-2022-33669, CVE-2022-33671, CVE-2022-33672, CVE-2022-33673, CVE-2022-33674, CVE-2022-33677. |
2 |
CVE-2022-33671 |
|
|
|
2022-07-12 |
2022-07-18 |
4.0 |
None |
Remote |
Low |
??? |
Partial |
None |
None |
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-30181, CVE-2022-33641, CVE-2022-33642, CVE-2022-33643, CVE-2022-33650, CVE-2022-33651, CVE-2022-33652, CVE-2022-33653, CVE-2022-33654, CVE-2022-33655, CVE-2022-33656, CVE-2022-33657, CVE-2022-33658, CVE-2022-33659, CVE-2022-33660, CVE-2022-33661, CVE-2022-33662, CVE-2022-33663, CVE-2022-33664, CVE-2022-33665, CVE-2022-33666, CVE-2022-33667, CVE-2022-33668, CVE-2022-33669, CVE-2022-33672, CVE-2022-33673, CVE-2022-33674, CVE-2022-33675, CVE-2022-33677. |
3 |
CVE-2022-33669 |
|
|
|
2022-07-12 |
2022-07-18 |
4.0 |
None |
Remote |
Low |
??? |
Partial |
None |
None |
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-30181, CVE-2022-33641, CVE-2022-33642, CVE-2022-33643, CVE-2022-33650, CVE-2022-33651, CVE-2022-33652, CVE-2022-33653, CVE-2022-33654, CVE-2022-33655, CVE-2022-33656, CVE-2022-33657, CVE-2022-33658, CVE-2022-33659, CVE-2022-33660, CVE-2022-33661, CVE-2022-33662, CVE-2022-33663, CVE-2022-33664, CVE-2022-33665, CVE-2022-33666, CVE-2022-33667, CVE-2022-33668, CVE-2022-33671, CVE-2022-33672, CVE-2022-33673, CVE-2022-33674, CVE-2022-33675, CVE-2022-33677. |
4 |
CVE-2022-33668 |
|
|
|
2022-07-12 |
2022-07-18 |
4.0 |
None |
Remote |
Low |
??? |
Partial |
None |
None |
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-30181, CVE-2022-33641, CVE-2022-33642, CVE-2022-33643, CVE-2022-33650, CVE-2022-33651, CVE-2022-33652, CVE-2022-33653, CVE-2022-33654, CVE-2022-33655, CVE-2022-33656, CVE-2022-33657, CVE-2022-33658, CVE-2022-33659, CVE-2022-33660, CVE-2022-33661, CVE-2022-33662, CVE-2022-33663, CVE-2022-33664, CVE-2022-33665, CVE-2022-33666, CVE-2022-33667, CVE-2022-33669, CVE-2022-33671, CVE-2022-33672, CVE-2022-33673, CVE-2022-33674, CVE-2022-33675, CVE-2022-33677. |
5 |
CVE-2022-33664 |
|
|
|
2022-07-12 |
2022-07-18 |
4.0 |
None |
Remote |
Low |
??? |
Partial |
None |
None |
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-30181, CVE-2022-33641, CVE-2022-33642, CVE-2022-33643, CVE-2022-33650, CVE-2022-33651, CVE-2022-33652, CVE-2022-33653, CVE-2022-33654, CVE-2022-33655, CVE-2022-33656, CVE-2022-33657, CVE-2022-33658, CVE-2022-33659, CVE-2022-33660, CVE-2022-33661, CVE-2022-33662, CVE-2022-33663, CVE-2022-33665, CVE-2022-33666, CVE-2022-33667, CVE-2022-33668, CVE-2022-33669, CVE-2022-33671, CVE-2022-33672, CVE-2022-33673, CVE-2022-33674, CVE-2022-33675, CVE-2022-33677. |
6 |
CVE-2022-33660 |
|
|
|
2022-07-12 |
2022-07-19 |
4.0 |
None |
Remote |
Low |
??? |
Partial |
None |
None |
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-30181, CVE-2022-33641, CVE-2022-33642, CVE-2022-33643, CVE-2022-33650, CVE-2022-33651, CVE-2022-33652, CVE-2022-33653, CVE-2022-33654, CVE-2022-33655, CVE-2022-33656, CVE-2022-33657, CVE-2022-33658, CVE-2022-33659, CVE-2022-33661, CVE-2022-33662, CVE-2022-33663, CVE-2022-33664, CVE-2022-33665, CVE-2022-33666, CVE-2022-33667, CVE-2022-33668, CVE-2022-33669, CVE-2022-33671, CVE-2022-33672, CVE-2022-33673, CVE-2022-33674, CVE-2022-33675, CVE-2022-33677. |
7 |
CVE-2022-33659 |
|
|
|
2022-07-12 |
2022-07-19 |
4.0 |
None |
Remote |
Low |
??? |
Partial |
None |
None |
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-30181, CVE-2022-33641, CVE-2022-33642, CVE-2022-33643, CVE-2022-33650, CVE-2022-33651, CVE-2022-33652, CVE-2022-33653, CVE-2022-33654, CVE-2022-33655, CVE-2022-33656, CVE-2022-33657, CVE-2022-33658, CVE-2022-33660, CVE-2022-33661, CVE-2022-33662, CVE-2022-33663, CVE-2022-33664, CVE-2022-33665, CVE-2022-33666, CVE-2022-33667, CVE-2022-33668, CVE-2022-33669, CVE-2022-33671, CVE-2022-33672, CVE-2022-33673, CVE-2022-33674, CVE-2022-33675, CVE-2022-33677. |
8 |
CVE-2022-33654 |
|
|
|
2022-07-12 |
2022-07-19 |
4.0 |
None |
Remote |
Low |
??? |
Partial |
None |
None |
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-30181, CVE-2022-33641, CVE-2022-33642, CVE-2022-33643, CVE-2022-33650, CVE-2022-33651, CVE-2022-33652, CVE-2022-33653, CVE-2022-33655, CVE-2022-33656, CVE-2022-33657, CVE-2022-33658, CVE-2022-33659, CVE-2022-33660, CVE-2022-33661, CVE-2022-33662, CVE-2022-33663, CVE-2022-33664, CVE-2022-33665, CVE-2022-33666, CVE-2022-33667, CVE-2022-33668, CVE-2022-33669, CVE-2022-33671, CVE-2022-33672, CVE-2022-33673, CVE-2022-33674, CVE-2022-33675, CVE-2022-33677. |
9 |
CVE-2022-33653 |
|
|
|
2022-07-12 |
2022-07-19 |
4.0 |
None |
Remote |
Low |
??? |
Partial |
None |
None |
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-30181, CVE-2022-33641, CVE-2022-33642, CVE-2022-33643, CVE-2022-33650, CVE-2022-33651, CVE-2022-33652, CVE-2022-33654, CVE-2022-33655, CVE-2022-33656, CVE-2022-33657, CVE-2022-33658, CVE-2022-33659, CVE-2022-33660, CVE-2022-33661, CVE-2022-33662, CVE-2022-33663, CVE-2022-33664, CVE-2022-33665, CVE-2022-33666, CVE-2022-33667, CVE-2022-33668, CVE-2022-33669, CVE-2022-33671, CVE-2022-33672, CVE-2022-33673, CVE-2022-33674, CVE-2022-33675, CVE-2022-33677. |
10 |
CVE-2022-33651 |
|
|
|
2022-07-12 |
2022-07-19 |
4.0 |
None |
Remote |
Low |
??? |
Partial |
None |
None |
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-30181, CVE-2022-33641, CVE-2022-33642, CVE-2022-33643, CVE-2022-33650, CVE-2022-33652, CVE-2022-33653, CVE-2022-33654, CVE-2022-33655, CVE-2022-33656, CVE-2022-33657, CVE-2022-33658, CVE-2022-33659, CVE-2022-33660, CVE-2022-33661, CVE-2022-33662, CVE-2022-33663, CVE-2022-33664, CVE-2022-33665, CVE-2022-33666, CVE-2022-33667, CVE-2022-33668, CVE-2022-33669, CVE-2022-33671, CVE-2022-33672, CVE-2022-33673, CVE-2022-33674, CVE-2022-33675, CVE-2022-33677. |
11 |
CVE-2022-33650 |
|
|
|
2022-07-12 |
2022-07-19 |
4.0 |
None |
Remote |
Low |
??? |
Partial |
None |
None |
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-30181, CVE-2022-33641, CVE-2022-33642, CVE-2022-33643, CVE-2022-33651, CVE-2022-33652, CVE-2022-33653, CVE-2022-33654, CVE-2022-33655, CVE-2022-33656, CVE-2022-33657, CVE-2022-33658, CVE-2022-33659, CVE-2022-33660, CVE-2022-33661, CVE-2022-33662, CVE-2022-33663, CVE-2022-33664, CVE-2022-33665, CVE-2022-33666, CVE-2022-33667, CVE-2022-33668, CVE-2022-33669, CVE-2022-33671, CVE-2022-33672, CVE-2022-33673, CVE-2022-33674, CVE-2022-33675, CVE-2022-33677. |
12 |
CVE-2022-33644 |
|
|
|
2022-07-12 |
2022-07-19 |
4.4 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
Partial |
Xbox Live Save Service Elevation of Privilege Vulnerability. |
13 |
CVE-2022-33642 |
|
|
|
2022-07-12 |
2022-09-27 |
4.0 |
None |
Remote |
Low |
??? |
Partial |
None |
None |
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-30181, CVE-2022-33641, CVE-2022-33643, CVE-2022-33650, CVE-2022-33651, CVE-2022-33652, CVE-2022-33653, CVE-2022-33654, CVE-2022-33655, CVE-2022-33656, CVE-2022-33657, CVE-2022-33658, CVE-2022-33659, CVE-2022-33660, CVE-2022-33661, CVE-2022-33662, CVE-2022-33663, CVE-2022-33664, CVE-2022-33665, CVE-2022-33666, CVE-2022-33667, CVE-2022-33668, CVE-2022-33669, CVE-2022-33671, CVE-2022-33672, CVE-2022-33673, CVE-2022-33674, CVE-2022-33675, CVE-2022-33677. |
14 |
CVE-2022-33637 |
|
|
|
2022-07-12 |
2022-07-19 |
4.0 |
None |
Remote |
Low |
??? |
None |
Partial |
None |
Microsoft Defender for Endpoint Tampering Vulnerability. |
15 |
CVE-2022-33632 |
863 |
|
Bypass |
2022-07-12 |
2022-07-20 |
4.6 |
None |
Remote |
High |
??? |
Partial |
Partial |
Partial |
Microsoft Office Security Feature Bypass Vulnerability. |
16 |
CVE-2022-30222 |
|
|
Exec Code |
2022-07-12 |
2022-07-20 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
Windows Shell Remote Code Execution Vulnerability. |
17 |
CVE-2022-30212 |
362 |
|
|
2022-07-12 |
2022-07-20 |
4.7 |
None |
Local |
Medium |
Not required |
Complete |
None |
None |
Windows Connected Devices Platform Service Information Disclosure Vulnerability. |
18 |
CVE-2022-30208 |
|
|
DoS |
2022-07-12 |
2022-07-20 |
4.0 |
None |
Remote |
Low |
??? |
None |
None |
Partial |
Windows Security Account Manager (SAM) Denial of Service Vulnerability. |
19 |
CVE-2022-30203 |
|
|
Bypass |
2022-07-12 |
2022-07-20 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
Windows Boot Manager Security Feature Bypass Vulnerability. |
20 |
CVE-2022-30189 |
|
|
|
2022-06-15 |
2022-06-27 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
Windows Autopilot Device Management and Enrollment Client Spoofing Vulnerability. |
21 |
CVE-2022-30184 |
|
|
|
2022-06-15 |
2022-10-05 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
.NET and Visual Studio Information Disclosure Vulnerability. |
22 |
CVE-2022-30172 |
|
|
|
2022-06-15 |
2022-06-26 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
Microsoft Office Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-30159, CVE-2022-30171. |
23 |
CVE-2022-30171 |
|
|
|
2022-06-15 |
2022-06-26 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
Microsoft Office Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-30159, CVE-2022-30172. |
24 |
CVE-2022-30166 |
|
|
|
2022-06-15 |
2022-10-27 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
Local Security Authority Subsystem Service Elevation of Privilege Vulnerability. |
25 |
CVE-2022-30164 |
863 |
|
Bypass |
2022-06-15 |
2022-09-22 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
Kerberos AppContainer Security Feature Bypass Vulnerability. |
26 |
CVE-2022-30160 |
|
|
|
2022-06-15 |
2022-06-25 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
Windows Advanced Local Procedure Call Elevation of Privilege Vulnerability. |
27 |
CVE-2022-30159 |
|
|
|
2022-06-15 |
2022-06-26 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
Microsoft Office Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-30171, CVE-2022-30172. |
28 |
CVE-2022-30151 |
269 |
|
|
2022-06-15 |
2022-06-27 |
4.4 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
Partial |
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability. |
29 |
CVE-2022-30137 |
|
|
|
2022-06-15 |
2022-06-24 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
Azure Service Fabric Container Elevation of Privilege Vulnerability. |
30 |
CVE-2022-29149 |
|
|
|
2022-06-15 |
2022-06-24 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
Azure Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability. |
31 |
CVE-2022-29125 |
269 |
|
|
2022-05-10 |
2022-05-23 |
4.4 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
Partial |
Windows Push Notifications Apps Elevation of Privilege Vulnerability. |
32 |
CVE-2022-29120 |
668 |
|
|
2022-05-10 |
2022-05-23 |
4.9 |
None |
Local |
Low |
Not required |
Complete |
None |
None |
Windows Clustered Shared Volume Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-29122, CVE-2022-29123, CVE-2022-29134. |
33 |
CVE-2022-29116 |
362 |
|
|
2022-05-10 |
2022-05-20 |
4.7 |
None |
Local |
Medium |
Not required |
Complete |
None |
None |
Windows Kernel Information Disclosure Vulnerability. |
34 |
CVE-2022-29113 |
362 |
|
|
2022-05-10 |
2022-05-23 |
4.4 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
Partial |
Windows Digital Media Receiver Elevation of Privilege Vulnerability. |
35 |
CVE-2022-29112 |
668 |
|
|
2022-05-10 |
2022-05-20 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
Windows Graphics Component Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-22011, CVE-2022-26934. |
36 |
CVE-2022-29107 |
863 |
|
Bypass |
2022-05-10 |
2022-05-19 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
Microsoft Office Security Feature Bypass Vulnerability. |
37 |
CVE-2022-29106 |
|
|
|
2022-05-10 |
2022-05-19 |
4.4 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
Partial |
Windows Hyper-V Shared Virtual Disk Elevation of Privilege Vulnerability. |
38 |
CVE-2022-29104 |
|
|
|
2022-05-10 |
2022-05-20 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29132. |
39 |
CVE-2022-29103 |
|
|
|
2022-05-10 |
2022-05-20 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
Windows Remote Access Connection Manager Elevation of Privilege Vulnerability. |
40 |
CVE-2022-29102 |
668 |
|
|
2022-05-10 |
2022-05-23 |
4.9 |
None |
Local |
Low |
Not required |
Complete |
None |
None |
Windows Failover Cluster Information Disclosure Vulnerability. |
41 |
CVE-2022-26940 |
668 |
|
|
2022-05-10 |
2022-05-19 |
4.0 |
None |
Remote |
Low |
??? |
Partial |
None |
None |
Remote Desktop Protocol Client Information Disclosure Vulnerability. |
42 |
CVE-2022-26939 |
362 |
|
|
2022-05-10 |
2022-05-23 |
4.4 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
Partial |
Storage Spaces Direct Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-26932, CVE-2022-26938. |
43 |
CVE-2022-26938 |
269 |
|
|
2022-05-10 |
2022-05-19 |
4.4 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
Partial |
Storage Spaces Direct Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-26932, CVE-2022-26939. |
44 |
CVE-2022-26936 |
668 |
|
|
2022-05-10 |
2022-05-19 |
4.0 |
None |
Remote |
Low |
??? |
Partial |
None |
None |
Windows Server Service Information Disclosure Vulnerability. |
45 |
CVE-2022-26934 |
|
|
|
2022-05-10 |
2022-05-20 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
Windows Graphics Component Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-22011, CVE-2022-29112. |
46 |
CVE-2022-26933 |
668 |
|
|
2022-05-10 |
2022-05-19 |
4.9 |
None |
Local |
Low |
Not required |
Complete |
None |
None |
Windows NTFS Information Disclosure Vulnerability. |
47 |
CVE-2022-26925 |
290 |
|
|
2022-05-10 |
2022-10-07 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
Windows LSA Spoofing Vulnerability. |
48 |
CVE-2022-26921 |
|
|
|
2022-04-15 |
2022-04-25 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
Visual Studio Code Elevation of Privilege Vulnerability. |
49 |
CVE-2022-26920 |
|
|
|
2022-04-15 |
2022-04-25 |
4.9 |
None |
Local |
Low |
Not required |
Complete |
None |
None |
Windows Graphics Component Information Disclosure Vulnerability. |
50 |
CVE-2022-26914 |
269 |
|
|
2022-04-15 |
2022-04-26 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
Win32k Elevation of Privilege Vulnerability. |
|
|