Microsoft Microsoft Makers of the Windows Operating System and hundreds of products that run on it.

  1. Vendors
  2. Microsoft
Do you want an email whenever new security vulnerabilities are reported in any Microsoft product?

Products by Microsoft Sorted by Most Security Vulnerabilities since 2018

Microsoft Windows 102251 vulnerabilities

Microsoft Windows Server 20162238 vulnerabilities

Microsoft Windows Server 20191969 vulnerabilities

Microsoft Windows Server 20121461 vulnerabilities

Microsoft Windows 8.11391 vulnerabilities

Microsoft Windows Rt 8 11298 vulnerabilities

Microsoft Windows Server 20081289 vulnerabilities

Microsoft Windows 71268 vulnerabilities

Microsoft Internet Explorer (IE)409 vulnerabilities
Popular web browser for windows

Microsoft Windows 11315 vulnerabilities

Microsoft Office287 vulnerabilities

Microsoft Windows Server281 vulnerabilities

Microsoft Windows Server 2022235 vulnerabilities

Microsoft Sharepoint Server231 vulnerabilities

Microsoft Sharepoint Enterprise Server215 vulnerabilities

Microsoft ChakraCore184 vulnerabilities
ChakraCore is the core part of the Chakra JavaScript engine that powers Microsoft Edge

Microsoft Sharepoint Foundation160 vulnerabilities

Microsoft Ie146 vulnerabilities

Microsoft 365 Apps109 vulnerabilities

Microsoft Excel101 vulnerabilities
Spreadsheet Software

Microsoft Office 365 Proplus83 vulnerabilities

Microsoft Exchange Server80 vulnerabilities

Microsoft Office Online Server80 vulnerabilities

Microsoft Visual Studio 201966 vulnerabilities

Microsoft Edge Chromium66 vulnerabilities

Microsoft Word59 vulnerabilities

Microsoft Visual Studio 201758 vulnerabilities

Microsoft Edge Browser52 vulnerabilities
Web Browser based on Chromium

Microsoft Office Web Apps50 vulnerabilities

Microsoft Outlook40 vulnerabilities

Microsoft Office Compatibility Pack39 vulnerabilities

Microsoft Visual Studio Code36 vulnerabilities

Microsoft Dynamics 36534 vulnerabilities

Microsoft Windows XP32 vulnerabilities

Microsoft Office Web Apps Server28 vulnerabilities

Microsoft .NET Core28 vulnerabilities

Microsoft Azure Devops Server27 vulnerabilities

Microsoft Hevc Video Extensions27 vulnerabilities

Microsoft Azure Sphere26 vulnerabilities

Microsoft ASP.NET Core24 vulnerabilities

Microsoft Visual Studio24 vulnerabilities
Developer IDE

Microsoft Team Foundation Server23 vulnerabilities

Microsoft Windows Vista21 vulnerabilities

Microsoft Powershell Core18 vulnerabilities

Microsoft Windows 2003 Server17 vulnerabilities

Microsoft Windows Server 200317 vulnerabilities

Microsoft Excel Viewer17 vulnerabilities

Microsoft Project Server16 vulnerabilities

Microsoft Windows 200016 vulnerabilities

Microsoft Net15 vulnerabilities

Microsoft Office Long Term Servicing Channel15 vulnerabilities

Microsoft Azure Site Recovery14 vulnerabilities

Microsoft Defender For Iot12 vulnerabilities

Microsoft Raw Image Extension10 vulnerabilities

Microsoft Visual Studio 202210 vulnerabilities

Microsoft High Efficiency Video Coding10 vulnerabilities

Microsoft Security Essentials9 vulnerabilities

Microsoft Onedrive9 vulnerabilities

Microsoft Powerpoint8 vulnerabilities

Microsoft Remote Desktop8 vulnerabilities

Microsoft 3d Viewer7 vulnerabilities

Microsoft Office Word Viewer7 vulnerabilities

Microsoft Lync Server7 vulnerabilities

Microsoft Skype For Business Server7 vulnerabilities

Microsoft Lync7 vulnerabilities

Microsoft Windows 87 vulnerabilities

Microsoft SQL Server7 vulnerabilities
Database Server

Microsoft Outlook Express7 vulnerabilities

Microsoft Windows Defender For Iot7 vulnerabilities

Microsoft Malware Protection Engine7 vulnerabilities

Microsoft Dynamics 365 Business Central7 vulnerabilities

Microsoft Dynamics Nav7 vulnerabilities

Microsoft Excel 2013 Rt7 vulnerabilities

Microsoft Skype For Business7 vulnerabilities

Microsoft Forefront Endpoint Protection 20107 vulnerabilities

Microsoft Office For Mac7 vulnerabilities

Microsoft Powerpoint Viewer6 vulnerabilities

Microsoft System Center Operations Manager6 vulnerabilities

Microsoft System Center Endpoint Protection6 vulnerabilities

Microsoft Powershell6 vulnerabilities

Microsoft Vp9 Video Extensions6 vulnerabilities

Microsoft Windows 986 vulnerabilities

Microsoft Windows5 vulnerabilities

Microsoft Windows Server 18035 vulnerabilities

Microsoft Azure Real Time Operating System5 vulnerabilities

Microsoft Teams5 vulnerabilities

Microsoft Windows Me5 vulnerabilities

Microsoft Windows Nt5 vulnerabilities

Microsoft Power Bi Report Server5 vulnerabilities

Microsoft Internet Information Services5 vulnerabilities

Microsoft Dynamics Gp5 vulnerabilities

Microsoft Office 3655 vulnerabilities

Microsoft Sql Server Management Studio5 vulnerabilities

Microsoft Paint 3d4 vulnerabilities

Microsoft Project4 vulnerabilities

Microsoft Azure Diagnostics Lad4 vulnerabilities

Microsoft Open Enclave Software Development Kit4 vulnerabilities

Microsoft Business Productivity Servers4 vulnerabilities

Microsoft Windows 98se4 vulnerabilities

Microsoft Container Monitoring Solution4 vulnerabilities

Recent Microsoft Security Advisories

Advisory Title Published
CVE-2022-1639 Chromium: CVE-2022-1639 Use after free in ANGLE May 13, 2022
CVE-2022-1634 Chromium: CVE-2022-1634 Use after free in Browser UI May 13, 2022
CVE-2022-1637 Chromium: CVE-2022-1637 Inappropriate implementation in Web Contents May 13, 2022
CVE-2022-1636 Chromium: CVE-2022-1636 Use after free in Performance APIs May 13, 2022
CVE-2022-1638 Chromium: CVE-2022-1638 Heap buffer overflow in V8 Internationalization May 13, 2022
CVE-2022-1640 Chromium: CVE-2022-1640 Use after free in Sharing May 13, 2022
CVE-2022-1635 Chromium: CVE-2022-1635 Use after free in Permission Prompts May 13, 2022
CVE-2022-30138 Windows Print Spooler Elevation of Privilege Vulnerability May 12, 2022
CVE-2022-26932 Storage Spaces Direct Elevation of Privilege Vulnerability May 10, 2022
CVE-2022-26933 Windows NTFS Information Disclosure Vulnerability May 10, 2022

@msftsecurity Tweets

RT @msdev: Code, test, and ship your next app quickly and securely from the cloud. Learn how: https://t.co/lEEpp5ckPK #Azure #DevSecOps #M…
Tue May 24 15:57:12 +0000 2022

The Microsoft Security Technical Content Library is here for you—no library card required! Browse and find articles… https://t.co/Nm9AwEdfyw
Tue May 24 14:35:01 +0000 2022

RT @WSJ: Charlie Bell helped build Amazon’s cloud-computing empire. In his new job at a longtime rival, he still relies on lessons from Ama…
Mon May 23 22:30:00 +0000 2022

RT @RSAConference: Kemba Eneas Walden has been appointed to the Office of the National Cyber Director, as announced by the White House. Wal…
Mon May 23 19:30:00 +0000 2022

By the Year

In 2022 there have been 524 vulnerabilities in Microsoft with an average score of 7.4 out of ten. Last year Microsoft had 1108 security vulnerabilities published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Microsoft in 2022 could surpass last years number. Last year, the average CVE base score was greater by 0.11

Year Vulnerabilities Average Score
2022 524 7.44
2021 1108 7.54
2020 1191 7.36
2019 759 7.23
2018 577 6.88

It may take a day or so for new Microsoft vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Microsoft Security Vulnerabilities

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2022-30138 7.8 - High - May 18, 2022

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29104, CVE-2022-29132.

The package workspace-tools before 0.18.4 are vulnerable to Command Injection via git argument injection

CVE-2022-25865 9.8 - Critical - May 13, 2022

The package workspace-tools before 0.18.4 are vulnerable to Command Injection via git argument injection. When calling the fetchRemoteBranch(remote: string, remoteBranch: string, cwd: string) function, both the remote and remoteBranch parameters are passed to the git fetch subcommand in a way that additional flags can be set. The additional flags can be used to perform a command injection.

Command Injection

Windows LSA Spoofing Vulnerability.

CVE-2022-26925 5.9 - Medium - May 10, 2022

Windows LSA Spoofing Vulnerability.

Authentication Bypass by Spoofing

Microsoft Exchange Server Elevation of Privilege Vulnerability.

CVE-2022-21978 8.2 - High - May 10, 2022

Microsoft Exchange Server Elevation of Privilege Vulnerability.

Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

CVE-2022-21972 8.1 - High - May 10, 2022

Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-23270.

Windows Hyper-V Denial of Service Vulnerability.

CVE-2022-22713 5.6 - Medium - May 10, 2022

Windows Hyper-V Denial of Service Vulnerability.

Resource Exhaustion

.NET and Visual Studio Denial of Service Vulnerability

CVE-2022-23267 7.5 - High - May 10, 2022

.NET and Visual Studio Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-29117, CVE-2022-29145.

Resource Exhaustion

Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

CVE-2022-23270 8.1 - High - May 10, 2022

Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21972.

Windows Hyper-V Security Feature Bypass Vulnerability.

CVE-2022-24466 4.7 - Medium - May 10, 2022

Windows Hyper-V Security Feature Bypass Vulnerability.

AuthZ

Windows Authentication Security Feature Bypass Vulnerability.

CVE-2022-26913 7.4 - High - May 10, 2022

Windows Authentication Security Feature Bypass Vulnerability.

AuthZ

Windows Address Book Remote Code Execution Vulnerability.

CVE-2022-26926 7.8 - High - May 10, 2022

Windows Address Book Remote Code Execution Vulnerability.

Windows Graphics Component Remote Code Execution Vulnerability.

CVE-2022-26927 8.8 - High - May 10, 2022

Windows Graphics Component Remote Code Execution Vulnerability.

Windows Remote Access Connection Manager Information Disclosure Vulnerability.

CVE-2022-26930 5.5 - Medium - May 10, 2022

Windows Remote Access Connection Manager Information Disclosure Vulnerability.

Windows Kerberos Elevation of Privilege Vulnerability.

CVE-2022-26931 7.5 - High - May 10, 2022

Windows Kerberos Elevation of Privilege Vulnerability.

Storage Spaces Direct Elevation of Privilege Vulnerability

CVE-2022-26932 8.2 - High - May 10, 2022

Storage Spaces Direct Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-26938, CVE-2022-26939.

Windows NTFS Information Disclosure Vulnerability.

CVE-2022-26933 5.5 - Medium - May 10, 2022

Windows NTFS Information Disclosure Vulnerability.

Exposure of Resource to Wrong Sphere

Windows Graphics Component Information Disclosure Vulnerability

CVE-2022-26934 6.5 - Medium - May 10, 2022

Windows Graphics Component Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-22011, CVE-2022-29112.

Windows WLAN AutoConfig Service Information Disclosure Vulnerability.

CVE-2022-26935 6.5 - Medium - May 10, 2022

Windows WLAN AutoConfig Service Information Disclosure Vulnerability.

Exposure of Resource to Wrong Sphere

Windows Server Service Information Disclosure Vulnerability.

CVE-2022-26936 6.5 - Medium - May 10, 2022

Windows Server Service Information Disclosure Vulnerability.

Exposure of Resource to Wrong Sphere

Windows Network File System Remote Code Execution Vulnerability.

CVE-2022-26937 9.8 - Critical - May 10, 2022

Windows Network File System Remote Code Execution Vulnerability.

Storage Spaces Direct Elevation of Privilege Vulnerability

CVE-2022-26938 7 - High - May 10, 2022

Storage Spaces Direct Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-26932, CVE-2022-26939.

Improper Privilege Management

Storage Spaces Direct Elevation of Privilege Vulnerability

CVE-2022-26939 7 - High - May 10, 2022

Storage Spaces Direct Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-26932, CVE-2022-26938.

Race Condition

Remote Desktop Protocol Client Information Disclosure Vulnerability.

CVE-2022-26940 6.5 - Medium - May 10, 2022

Remote Desktop Protocol Client Information Disclosure Vulnerability.

Exposure of Resource to Wrong Sphere

Windows Graphics Component Information Disclosure Vulnerability

CVE-2022-22011 5.5 - Medium - May 10, 2022

Windows Graphics Component Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-26934, CVE-2022-29112.

Exposure of Resource to Wrong Sphere

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-22012 9.8 - Critical - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-22013 8.8 - High - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-22014 8.8 - High - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.

Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability.

CVE-2022-22015 6.5 - Medium - May 10, 2022

Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability.

Exposure of Resource to Wrong Sphere

Windows PlayToManager Elevation of Privilege Vulnerability.

CVE-2022-22016 7 - High - May 10, 2022

Windows PlayToManager Elevation of Privilege Vulnerability.

Remote Desktop Client Remote Code Execution Vulnerability.

CVE-2022-22017 8.8 - High - May 10, 2022

Remote Desktop Client Remote Code Execution Vulnerability.

Windows Failover Cluster Information Disclosure Vulnerability.

CVE-2022-29102 5.5 - Medium - May 10, 2022

Windows Failover Cluster Information Disclosure Vulnerability.

Exposure of Resource to Wrong Sphere

Windows Remote Access Connection Manager Elevation of Privilege Vulnerability.

CVE-2022-29103 7.8 - High - May 10, 2022

Windows Remote Access Connection Manager Elevation of Privilege Vulnerability.

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2022-29104 7.8 - High - May 10, 2022

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29132.

Microsoft Windows Media Foundation Remote Code Execution Vulnerability.

CVE-2022-29105 7.8 - High - May 10, 2022

Microsoft Windows Media Foundation Remote Code Execution Vulnerability.

Windows Hyper-V Shared Virtual Disk Elevation of Privilege Vulnerability.

CVE-2022-29106 7 - High - May 10, 2022

Windows Hyper-V Shared Virtual Disk Elevation of Privilege Vulnerability.

Microsoft Office Security Feature Bypass Vulnerability.

CVE-2022-29107 5.5 - Medium - May 10, 2022

Microsoft Office Security Feature Bypass Vulnerability.

AuthZ

Microsoft SharePoint Server Remote Code Execution Vulnerability.

CVE-2022-29108 8.8 - High - May 10, 2022

Microsoft SharePoint Server Remote Code Execution Vulnerability.

Microsoft Excel Remote Code Execution Vulnerability

CVE-2022-29109 7.8 - High - May 10, 2022

Microsoft Excel Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-29110.

Microsoft Excel Remote Code Execution Vulnerability

CVE-2022-29110 7.8 - High - May 10, 2022

Microsoft Excel Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-29109.

Windows Digital Media Receiver Elevation of Privilege Vulnerability.

CVE-2022-29113 7.8 - High - May 10, 2022

Windows Digital Media Receiver Elevation of Privilege Vulnerability.

Race Condition

Visual Studio Code Remote Code Execution Vulnerability.

CVE-2022-30129 8.8 - High - May 10, 2022

Visual Studio Code Remote Code Execution Vulnerability.

Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability

CVE-2022-29151 7 - High - May 10, 2022

Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29135, CVE-2022-29150.

Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability

CVE-2022-29150 7 - High - May 10, 2022

Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29135, CVE-2022-29151.

Windows Clustered Shared Volume Information Disclosure Vulnerability

CVE-2022-29123 6.5 - Medium - May 10, 2022

Windows Clustered Shared Volume Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-29120, CVE-2022-29122, CVE-2022-29134.

Exposure of Resource to Wrong Sphere

Windows Clustered Shared Volume Information Disclosure Vulnerability

CVE-2022-29122 6.5 - Medium - May 10, 2022

Windows Clustered Shared Volume Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-29120, CVE-2022-29123, CVE-2022-29134.

Exposure of Resource to Wrong Sphere

Windows WLAN AutoConfig Service Denial of Service Vulnerability.

CVE-2022-29121 6.5 - Medium - May 10, 2022

Windows WLAN AutoConfig Service Denial of Service Vulnerability.

Resource Exhaustion

Windows Clustered Shared Volume Information Disclosure Vulnerability

CVE-2022-29120 6.5 - Medium - May 10, 2022

Windows Clustered Shared Volume Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-29122, CVE-2022-29123, CVE-2022-29134.

Exposure of Resource to Wrong Sphere

Windows Graphics Component Information Disclosure Vulnerability

CVE-2022-29112 6.5 - Medium - May 10, 2022

Windows Graphics Component Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-22011, CVE-2022-26934.

Exposure of Resource to Wrong Sphere

Windows Kernel Information Disclosure Vulnerability.

CVE-2022-29116 4.7 - Medium - May 10, 2022

Windows Kernel Information Disclosure Vulnerability.

Race Condition

Active Directory Domain Services Elevation of Privilege Vulnerability.

CVE-2022-26923 8.8 - High - May 10, 2022

Active Directory Domain Services Elevation of Privilege Vulnerability.

Windows ALPC Elevation of Privilege Vulnerability.

CVE-2022-23279 7 - High - May 10, 2022

Windows ALPC Elevation of Privilege Vulnerability.

.NET Framework Denial of Service Vulnerability.

CVE-2022-30130 5.5 - Medium - May 10, 2022

.NET Framework Denial of Service Vulnerability.

Remote Procedure Call Runtime Remote Code Execution Vulnerability.

CVE-2022-22019 8.8 - High - May 10, 2022

Remote Procedure Call Runtime Remote Code Execution Vulnerability.

Visual Studio Remote Code Execution Vulnerability.

CVE-2022-29148 8.8 - High - May 10, 2022

Visual Studio Remote Code Execution Vulnerability.

.NET and Visual Studio Denial of Service Vulnerability

CVE-2022-29145 7.5 - High - May 10, 2022

.NET and Visual Studio Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-23267, CVE-2022-29117.

Windows Kernel Elevation of Privilege Vulnerability

CVE-2022-29142 7 - High - May 10, 2022

Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29133.

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-29141 8.8 - High - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139.

Windows Print Spooler Information Disclosure Vulnerability

CVE-2022-29140 5.5 - Medium - May 10, 2022

Windows Print Spooler Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-29114.

Windows Clustered Shared Volume Elevation of Privilege Vulnerability.

CVE-2022-29138 7 - High - May 10, 2022

Windows Clustered Shared Volume Elevation of Privilege Vulnerability.

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-29137 8.8 - High - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29139, CVE-2022-29141.

Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability

CVE-2022-29135 7 - High - May 10, 2022

Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29150, CVE-2022-29151.

Windows Clustered Shared Volume Information Disclosure Vulnerability

CVE-2022-29134 6.5 - Medium - May 10, 2022

Windows Clustered Shared Volume Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-29120, CVE-2022-29122, CVE-2022-29123.

Windows Kernel Elevation of Privilege Vulnerability

CVE-2022-29133 8.8 - High - May 10, 2022

Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29142.

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2022-29132 7.8 - High - May 10, 2022

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29104.

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-29131 8.8 - High - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-29130 9.8 - Critical - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-29129 8.8 - High - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-29128 8.8 - High - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.

BitLocker Security Feature Bypass Vulnerability.

CVE-2022-29127 4.2 - Medium - May 10, 2022

BitLocker Security Feature Bypass Vulnerability.

Tablet Windows User Interface Application Core Elevation of Privilege Vulnerability.

CVE-2022-29126 7 - High - May 10, 2022

Tablet Windows User Interface Application Core Elevation of Privilege Vulnerability.

Windows Push Notifications Apps Elevation of Privilege Vulnerability.

CVE-2022-29125 7 - High - May 10, 2022

Windows Push Notifications Apps Elevation of Privilege Vulnerability.

Improper Privilege Management

.NET and Visual Studio Denial of Service Vulnerability

CVE-2022-29117 7.5 - High - May 10, 2022

.NET and Visual Studio Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-23267, CVE-2022-29145.

Resource Exhaustion

Windows Fax Service Remote Code Execution Vulnerability.

CVE-2022-29115 7.8 - High - May 10, 2022

Windows Fax Service Remote Code Execution Vulnerability.

Code Injection

Windows Print Spooler Information Disclosure Vulnerability

CVE-2022-29114 5.5 - Medium - May 10, 2022

Windows Print Spooler Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-29140.

AuthZ

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-29139 8.8 - High - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29141.

An argument injection vulnerability in the browser-based authentication component of the Magnitude Simba Amazon Redshift ODBC Driver (1.4.14 through 1.4.21.1001 and 1.4.22 through 1.4.x before 1.4.52) may

CVE-2022-29972 7.8 - High - May 09, 2022

An argument injection vulnerability in the browser-based authentication component of the Magnitude Simba Amazon Redshift ODBC Driver (1.4.14 through 1.4.21.1001 and 1.4.22 through 1.4.x before 1.4.52) may allow a local user to execute arbitrary code.

Argument Injection

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2022-26793 7.8 - High - April 15, 2022

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-26786, CVE-2022-26787, CVE-2022-26789, CVE-2022-26790, CVE-2022-26791, CVE-2022-26792, CVE-2022-26794, CVE-2022-26795, CVE-2022-26796, CVE-2022-26797, CVE-2022-26798, CVE-2022-26801, CVE-2022-26802, CVE-2022-26803.

Improper Privilege Management

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2022-26794 7.8 - High - April 15, 2022

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-26786, CVE-2022-26787, CVE-2022-26789, CVE-2022-26790, CVE-2022-26791, CVE-2022-26792, CVE-2022-26793, CVE-2022-26795, CVE-2022-26796, CVE-2022-26797, CVE-2022-26798, CVE-2022-26801, CVE-2022-26802, CVE-2022-26803.

Improper Privilege Management

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2022-26795 7.8 - High - April 15, 2022

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-26786, CVE-2022-26787, CVE-2022-26789, CVE-2022-26790, CVE-2022-26791, CVE-2022-26792, CVE-2022-26793, CVE-2022-26794, CVE-2022-26796, CVE-2022-26797, CVE-2022-26798, CVE-2022-26801, CVE-2022-26802, CVE-2022-26803.

Improper Privilege Management

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2022-26796 7.8 - High - April 15, 2022

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-26786, CVE-2022-26787, CVE-2022-26789, CVE-2022-26790, CVE-2022-26791, CVE-2022-26792, CVE-2022-26793, CVE-2022-26794, CVE-2022-26795, CVE-2022-26797, CVE-2022-26798, CVE-2022-26801, CVE-2022-26802, CVE-2022-26803.

Improper Privilege Management

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2022-26797 7.8 - High - April 15, 2022

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-26786, CVE-2022-26787, CVE-2022-26789, CVE-2022-26790, CVE-2022-26791, CVE-2022-26792, CVE-2022-26793, CVE-2022-26794, CVE-2022-26795, CVE-2022-26796, CVE-2022-26798, CVE-2022-26801, CVE-2022-26802, CVE-2022-26803.

Improper Privilege Management

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2022-26798 7.8 - High - April 15, 2022

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-26786, CVE-2022-26787, CVE-2022-26789, CVE-2022-26790, CVE-2022-26791, CVE-2022-26792, CVE-2022-26793, CVE-2022-26794, CVE-2022-26795, CVE-2022-26796, CVE-2022-26797, CVE-2022-26801, CVE-2022-26802, CVE-2022-26803.

Improper Privilege Management

Windows DNS Server Remote Code Execution Vulnerability

CVE-2022-26811 7.2 - High - April 15, 2022

Windows DNS Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-24536, CVE-2022-26812, CVE-2022-26813, CVE-2022-26814, CVE-2022-26815, CVE-2022-26817, CVE-2022-26818, CVE-2022-26819, CVE-2022-26820, CVE-2022-26821, CVE-2022-26822, CVE-2022-26823, CVE-2022-26824, CVE-2022-26825, CVE-2022-26826, CVE-2022-26829.

Windows DNS Server Remote Code Execution Vulnerability

CVE-2022-26812 7.2 - High - April 15, 2022

Windows DNS Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-24536, CVE-2022-26811, CVE-2022-26813, CVE-2022-26814, CVE-2022-26815, CVE-2022-26817, CVE-2022-26818, CVE-2022-26819, CVE-2022-26820, CVE-2022-26821, CVE-2022-26822, CVE-2022-26823, CVE-2022-26824, CVE-2022-26825, CVE-2022-26826, CVE-2022-26829.

Windows DNS Server Remote Code Execution Vulnerability

CVE-2022-26813 7.2 - High - April 15, 2022

Windows DNS Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-24536, CVE-2022-26811, CVE-2022-26812, CVE-2022-26814, CVE-2022-26815, CVE-2022-26817, CVE-2022-26818, CVE-2022-26819, CVE-2022-26820, CVE-2022-26821, CVE-2022-26822, CVE-2022-26823, CVE-2022-26824, CVE-2022-26825, CVE-2022-26826, CVE-2022-26829.

Azure Site Recovery Information Disclosure Vulnerability

CVE-2022-26896 4.9 - Medium - April 15, 2022

Azure Site Recovery Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-26897.

Azure Site Recovery Information Disclosure Vulnerability

CVE-2022-26897 4.9 - Medium - April 15, 2022

Azure Site Recovery Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-26896.

Azure Site Recovery Remote Code Execution Vulnerability.

CVE-2022-26898 7.2 - High - April 15, 2022

Azure Site Recovery Remote Code Execution Vulnerability.

Microsoft Excel Remote Code Execution Vulnerability

CVE-2022-26901 7.8 - High - April 15, 2022

Microsoft Excel Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-24473.

Windows User Profile Service Elevation of Privilege Vulnerability.

CVE-2022-26904 7 - High - April 15, 2022

Windows User Profile Service Elevation of Privilege Vulnerability.

Race Condition

Win32k Elevation of Privilege Vulnerability.

CVE-2022-26914 7.8 - High - April 15, 2022

Win32k Elevation of Privilege Vulnerability.

Improper Privilege Management

Microsoft SharePoint Server Spoofing Vulnerability.

CVE-2022-24472 5.7 - Medium - April 15, 2022

Microsoft SharePoint Server Spoofing Vulnerability.

HEVC Video Extensions Remote Code Execution Vulnerability.

CVE-2022-24532 7.8 - High - April 15, 2022

HEVC Video Extensions Remote Code Execution Vulnerability.

Windows ALPC Elevation of Privilege Vulnerability

CVE-2022-24482 7 - High - April 15, 2022

Windows ALPC Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-24540.

Race Condition

Windows Installer Elevation of Privilege Vulnerability

CVE-2022-24530 7.8 - High - April 15, 2022

Windows Installer Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-24499.

Improper Privilege Management

Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVE-2022-24481 7.8 - High - April 15, 2022

Windows Common Log File System Driver Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-24521.

Improper Privilege Management

Remote Procedure Call Runtime Remote Code Execution Vulnerability

CVE-2022-24528 8.8 - High - April 15, 2022

Remote Procedure Call Runtime Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-24492, CVE-2022-26809.

Connected User Experiences and Telemetry Elevation of Privilege Vulnerability.

CVE-2022-24479 7.8 - High - April 15, 2022

Connected User Experiences and Telemetry Elevation of Privilege Vulnerability.

Improper Privilege Management

Windows Endpoint Configuration Manager Elevation of Privilege Vulnerability.

CVE-2022-24527 7.8 - High - April 15, 2022

Windows Endpoint Configuration Manager Elevation of Privilege Vulnerability.

Improper Privilege Management

Windows Fax Compose Form Remote Code Execution Vulnerability

CVE-2022-26917 7.8 - High - April 15, 2022

Windows Fax Compose Form Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-26916, CVE-2022-26918.

Built by Foundeo Inc., with data from the National Vulnerability Database (NVD), Icons by Icons8. Privacy Policy. Use of this site is governed by the Legal Terms
Disclaimer
CONTENT ON THIS WEBSITE IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. Always check with your vendor for the most up to date, and accurate information.