CVE Tracker

CVE ID	Severity	EPSS	Vendor	Description	Date	Status
CVE-2019-1322	High	36.5%	MicrosoftWindows	A privilege escalation vulnerability exists when Windows improperly handles authentication requests. An attacker who successfully exploited this vulnerability could run processes in an elevated context.	Mar 15, 2022	KEV
CVE-2019-0841	High	82.7%	MicrosoftWindows	A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context.	Mar 15, 2022	KEV
CVE-2016-3309	High	43.0%	MicrosoftWindows	A privilege escalation vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode.	Mar 15, 2022	KEV
CVE-2019-1132	High	35.6%	MicrosoftWin32k	A privilege escalation vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory.	Mar 15, 2022	KEV
CVE-2019-0543	High	16.6%	MicrosoftWindows	A privilege escalation vulnerability exists when Windows improperly handles authentication requests. An attacker who successfully exploited this vulnerability could run processes in an elevated context.	Mar 15, 2022	KEV
CVE-2019-1315	High	7.5%	MicrosoftWindows	A privilege escalation vulnerability exists when Windows Error Reporting manager improperly handles hard links. An attacker who successfully exploited this vulnerability could overwrite a targeted file leading to an elevated status.	Mar 15, 2022	KEV
CVE-2019-1253	High	30.2%	MicrosoftWindows	A privilege escalation vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.	Mar 15, 2022	KEV
CVE-2018-8120	High	94.1%	MicrosoftWin32k	A privilege escalation vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory.	Mar 15, 2022	KEV
CVE-2019-1064	High	11.3%	MicrosoftWindows	A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context.	Mar 15, 2022	KEV
CVE-2015-2546	High	39.9%	MicrosoftWin32k	The kernel-mode driver in Microsoft Windows OS and Server allows local users to gain privileges via a crafted application.	Mar 15, 2022	KEV
CVE-2019-1069	High	30.5%	MicrosoftTask Scheduler	A privilege escalation vulnerability exists in the way the Task Scheduler Service validates certain file operations.	Mar 15, 2022	KEV
CVE-2019-1405	High	57.1%	MicrosoftWindows	A privilege escalation vulnerability exists when the Windows UPnP service improperly allows COM object creation.	Mar 15, 2022	KEV
CVE-2019-1129	High	3.1%	MicrosoftWindows	A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context.	Mar 15, 2022	KEV
CVE-2017-0101	High	64.4%	MicrosoftWindows	A privilege escalation vulnerability exists when the Windows Transaction Manager improperly handles objects in memory.	Mar 15, 2022	KEV
CVE-2017-0261	High	92.9%	MicrosoftOffice	Microsoft Office contains a use-after-free vulnerability which can allow for remote code execution.	Mar 3, 2022	KEV
CVE-2004-0210	High	3.7%	MicrosoftWindows	A privilege elevation vulnerability exists in the POSIX subsystem. This vulnerability could allow a logged on user to take complete control of the system.	Mar 3, 2022	KEV
CVE-2013-1347	High	88.0%	MicrosoftInternet Explorer	This vulnerability may corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user within Internet Explorer.	Mar 3, 2022	KEV
CVE-2015-2387	High	31.2%	MicrosoftATM Font Driver	ATMFD.DLL in the Adobe Type Manager Font Driver in Microsoft Windows Server allows local users to gain privileges via a crafted application.	Mar 3, 2022	KEV
CVE-2013-3897	High	88.2%	MicrosoftInternet Explorer	A use-after-free vulnerability exists within CDisplayPointer in Microsoft Internet Explorer that allows an attacker to remotely execute arbitrary code.	Mar 3, 2022	KEV
CVE-2021-41379	High	1.2%	MicrosoftWindows	Microsoft Windows Installer contains an unspecified vulnerability that allows for privilege escalation.	Mar 3, 2022	KEV

CVE-2019-1322KEV

High

A privilege escalation vulnerability exists when Windows improperly handles authentication requests. An attacker who successfully exploited this vulnerability could run processes in an elevated context.

MicrosoftEPSS 36.5%

CVE-2019-0841KEV

High

A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context.

MicrosoftEPSS 82.7%

CVE-2016-3309KEV

High

A privilege escalation vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode.

MicrosoftEPSS 43.0%

CVE-2019-1132KEV

High

A privilege escalation vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory.

A privilege escalation vulnerability exists when Windows Error Reporting manager improperly handles hard links. An attacker who successfully exploited this vulnerability could overwrite a targeted file leading to an elevated status.

MicrosoftEPSS 7.5%

CVE-2019-1253KEV

High

A privilege escalation vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.

MicrosoftEPSS 30.2%

CVE-2018-8120KEV

High

A privilege escalation vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory.

MicrosoftEPSS 94.1%

CVE-2019-1064KEV

High

A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context.

MicrosoftEPSS 11.3%

CVE-2015-2546KEV

High

The kernel-mode driver in Microsoft Windows OS and Server allows local users to gain privileges via a crafted application.

MicrosoftEPSS 39.9%

CVE-2019-1069KEV

High

A privilege escalation vulnerability exists in the way the Task Scheduler Service validates certain file operations.

MicrosoftEPSS 30.5%

CVE-2019-1405KEV

High

A privilege escalation vulnerability exists when the Windows UPnP service improperly allows COM object creation.

MicrosoftEPSS 57.1%

CVE-2019-1129KEV

High

A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context.

MicrosoftEPSS 3.1%

CVE-2017-0101KEV

High

A privilege escalation vulnerability exists when the Windows Transaction Manager improperly handles objects in memory.

MicrosoftEPSS 64.4%

CVE-2017-0261KEV

High

Microsoft Office contains a use-after-free vulnerability which can allow for remote code execution.

MicrosoftEPSS 92.9%

CVE-2004-0210KEV

High

A privilege elevation vulnerability exists in the POSIX subsystem. This vulnerability could allow a logged on user to take complete control of the system.

MicrosoftEPSS 3.7%

CVE-2013-1347KEV

High

This vulnerability may corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user within Internet Explorer.

MicrosoftEPSS 88.0%

CVE-2015-2387KEV

High

ATMFD.DLL in the Adobe Type Manager Font Driver in Microsoft Windows Server allows local users to gain privileges via a crafted application.

MicrosoftEPSS 31.2%

CVE-2013-3897KEV

High

A use-after-free vulnerability exists within CDisplayPointer in Microsoft Internet Explorer that allows an attacker to remotely execute arbitrary code.

MicrosoftEPSS 88.2%

CVE-2021-41379KEV

High

Microsoft Windows Installer contains an unspecified vulnerability that allows for privilege escalation.

MicrosoftEPSS 1.2%

11 12 13 14 15 16 17