CVE-2019-1166 CVSS:4.3
A tampering vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLM MIC (Message Integrity Check) protection, aka 'Windows NTLM Tampering Vulnerability'. (Last Update:2019-10-15) (Publish Update:2019-10-10)
CVE-2019-1230 CVSS:4.0
An information disclosure vulnerability exists when the Windows Hyper-V Network Switch on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V Information Disclosure Vulnerability'. (Last Update:2019-10-15) (Publish Update:2019-10-10)
CVE-2019-1314 CVSS:4.6
A security feature bypass vulnerability exists in Windows 10 Mobile when Cortana allows a user to access files and folders through the locked screen, aka 'Windows 10 Mobile Security Feature Bypass Vulnerability'. (Last Update:2019-10-15) (Publish Update:2019-10-10)
CVE-2019-1321 CVSS:7.2
An elevation of privilege vulnerability exists when Windows CloudStore improperly handles file Discretionary Access Control List (DACL), aka 'Microsoft Windows CloudStore Elevation of Privilege Vulnerability'. (Last Update:2019-10-15) (Publish Update:2019-10-10)
CVE-2019-1334 CVSS:2.1
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1345. (Last Update:2019-10-15) (Publish Update:2019-10-10)
CVE-2019-1337 CVSS:2.1
An information disclosure vulnerability exists when Windows Update Client fails to properly handle objects in memory, aka 'Windows Update Client Information Disclosure Vulnerability'. (Last Update:2019-10-15) (Publish Update:2019-10-10)
CVE-2019-1338 CVSS:4.3
A security feature bypass vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLMv2 protection if a client is also sending LMv2 responses, aka 'Windows NTLM Security Feature Bypass Vulnerability'. (Last Update:2019-10-15) (Publish Update:2019-10-10)
CVE-2019-1339 CVSS:7.2
An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles hard links, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1315, CVE-2019-1342. (Last Update:2019-10-15) (Publish Update:2019-10-10)
CVE-2019-1340 CVSS:7.2
An elevation of privilege vulnerability exists in Windows AppX Deployment Server that allows file creation in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1320, CVE-2019-1322. (Last Update:2019-10-15) (Publish Update:2019-10-10)
CVE-2019-1341 CVSS:7.2
An elevation of privilege vulnerability exists when umpo.dll of the Power Service, improperly handles a Registry Restore Key function, aka 'Windows Power Service Elevation of Privilege Vulnerability'. (Last Update:2019-10-15) (Publish Update:2019-10-10)
Click here for a complete list of security vulnerabilities. This vulnerability list widget is provided by www.cvedetails.com