cpe:2.3:o:microsoft:windows_server_2016:1709:*:*:*:*:*:*:*
An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1114.
Source: Microsoft Corporation
Max CVSS
7.8
EPSS Score
0.04%
Published
2020-05-21
Updated
2021-07-21
An information disclosure vulnerability exists when Windows Subsystem for Linux improperly handles objects in memory, aka 'Windows Subsystem for Linux Information Disclosure Vulnerability'.
Source: Microsoft Corporation
Max CVSS
5.5
EPSS Score
0.04%
Published
2020-05-21
Updated
2021-07-21
An information disclosure vulnerability exists when Windows Error Reporting improperly handles file operations.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Error Reporting Information Disclosure Vulnerability'.
Source: Microsoft Corporation
Max CVSS
5.5
EPSS Score
0.04%
Published
2020-03-12
Updated
2021-07-21
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0874, CVE-2020-0879, CVE-2020-0880, CVE-2020-0882.
Source: Microsoft Corporation
Max CVSS
6.5
EPSS Score
11.20%
Published
2020-03-12
Updated
2021-07-21
An elevation of privilege exists in Windows Audio Service, aka 'Windows Audio Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1007, CVE-2019-1022, CVE-2019-1026, CVE-2019-1027, CVE-2019-1028.
Source: Microsoft Corporation
Max CVSS
7.8
EPSS Score
0.04%
Published
2019-06-12
Updated
2020-08-24
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'.
Source: Microsoft Corporation
Max CVSS
7.8
EPSS Score
0.04%
Published
2019-05-16
Updated
2020-08-24
A remote code execution vulnerability exists when Microsoft Windows OLE fails to properly validate user input, aka 'Windows OLE Remote Code Execution Vulnerability'.
Source: Microsoft Corporation
Max CVSS
9.3
EPSS Score
2.74%
Published
2019-05-16
Updated
2019-05-17
An elevation of privilege vulnerability exists when the Windows Kernel improperly handles key enumeration, aka 'Windows Kernel Elevation of Privilege Vulnerability'.
Source: Microsoft Corporation
Max CVSS
7.8
EPSS Score
0.05%
Published
2019-05-16
Updated
2023-03-20
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0846, CVE-2019-0847, CVE-2019-0851, CVE-2019-0877.
Source: Microsoft Corporation
Max CVSS
7.8
EPSS Score
1.28%
Published
2019-04-09
Updated
2020-09-28
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0846, CVE-2019-0847, CVE-2019-0851, CVE-2019-0879.
Source: Microsoft Corporation
Max CVSS
7.8
EPSS Score
0.42%
Published
2019-04-09
Updated
2020-09-28

CVE-2019-0859

Known exploited
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0685, CVE-2019-0803.
Source: Microsoft Corporation
Max CVSS
7.8
EPSS Score
0.04%
Published
2019-04-09
Updated
2020-08-24
CISA KEV Added
2021-11-03
A remote code execution vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Remote Code Execution Vulnerability'.
Source: Microsoft Corporation
Max CVSS
9.0
EPSS Score
2.20%
Published
2019-04-09
Updated
2020-08-24
A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'.
Source: Microsoft Corporation
Max CVSS
9.3
EPSS Score
16.69%
Published
2019-04-09
Updated
2023-03-20
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0846, CVE-2019-0847, CVE-2019-0877, CVE-2019-0879.
Source: Microsoft Corporation
Max CVSS
9.3
EPSS Score
1.49%
Published
2019-04-09
Updated
2020-08-24
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0802.
Source: Microsoft Corporation
Max CVSS
6.5
EPSS Score
11.20%
Published
2019-04-09
Updated
2020-08-24
An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0814.
Source: Microsoft Corporation
Max CVSS
5.5
EPSS Score
0.04%
Published
2019-04-09
Updated
2020-08-24
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0846, CVE-2019-0851, CVE-2019-0877, CVE-2019-0879.
Source: Microsoft Corporation
Max CVSS
9.3
EPSS Score
1.49%
Published
2019-04-09
Updated
2020-08-24
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0847, CVE-2019-0851, CVE-2019-0877, CVE-2019-0879.
Source: Microsoft Corporation
Max CVSS
9.3
EPSS Score
1.49%
Published
2019-04-09
Updated
2020-08-24
A remote code execution vulnerability exists when the IOleCvt interface renders ASP webpage content, aka 'Windows IOleCvt Interface Remote Code Execution Vulnerability'.
Source: Microsoft Corporation
Max CVSS
9.3
EPSS Score
3.78%
Published
2019-04-09
Updated
2022-11-15
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0840.
Source: Microsoft Corporation
Max CVSS
5.5
EPSS Score
0.04%
Published
2019-04-09
Updated
2020-08-24
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'Windows VBScript Engine Remote Code Execution Vulnerability'.
Source: Microsoft Corporation
Max CVSS
9.3
EPSS Score
4.08%
Published
2019-04-09
Updated
2020-08-24
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0844.
Source: Microsoft Corporation
Max CVSS
5.5
EPSS Score
0.04%
Published
2019-04-09
Updated
2020-08-24
An information disclosure vulnerability exists when the Terminal Services component improperly discloses the contents of its memory, aka 'Windows Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0838.
Source: Microsoft Corporation
Max CVSS
4.4
EPSS Score
0.04%
Published
2019-04-09
Updated
2020-08-24
An information disclosure vulnerability exists when Windows Task Scheduler improperly discloses credentials to Windows Credential Manager, aka 'Windows Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0839.
Source: Microsoft Corporation
Max CVSS
7.8
EPSS Score
0.04%
Published
2019-04-09
Updated
2020-08-24
An information disclosure vulnerability exists when DirectX improperly handles objects in memory, aka 'DirectX Information Disclosure Vulnerability'.
Source: Microsoft Corporation
Max CVSS
5.5
EPSS Score
0.04%
Published
2019-04-09
Updated
2020-08-24
317 vulnerabilities found
1 2 3 4 5 6 7 8 9 10 11 12 13
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!