VIR Vulnerability Intelligence Relay

Search

Found 744 results in 164ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2025-26687 high 7.5 7.5 FIX windows windows microsoft 1y ago Use after free in Windows Win32K - GRFX allows an unauthorized attacker to elevate privileges over a network.
CVE-2025-21402 high 7.8 7.8 microsoft 1y ago Microsoft Office OneNote Remote Code Execution Vulnerability
CVE-2025-21361 high 7.8 7.8 microsoft 1y ago Microsoft Outlook Remote Code Execution Vulnerability
CVE-2025-21338 high 7.8 7.8 FIX windows windows microsoft 1y ago GDI+ Remote Code Execution Vulnerability
CVE-2024-38250 high 7.8 7.8 FIX windows windows microsoft 2y ago Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2024-30104 high 7.8 7.8 microsoft 2y ago Microsoft Office Remote Code Execution Vulnerability
CVE-2024-30103 high 8.8 8.8 microsoft 2y ago Microsoft Outlook Remote Code Execution Vulnerability
CVE-2024-30101 high 7.5 7.5 microsoft 2y ago Microsoft Office Remote Code Execution Vulnerability
CVE-2024-26257 high 7.8 7.8 microsoft 2y ago Microsoft Excel Remote Code Execution Vulnerability
CVE-2024-20673 high 7.8 7.8 microsoft 2y ago Microsoft Office Remote Code Execution Vulnerability
CVE-2023-44487 high 7.5 10.0 KEVEXPFIX rocky rheldebian debian siemensietfnghttp2 3y ago The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2023-36565 high 7.0 7.0 microsoft 3y ago Microsoft Office Graphics Elevation of Privilege Vulnerability
CVE-2023-33161 high 7.8 7.8 microsoft 3y ago Microsoft Excel Remote Code Execution Vulnerability
CVE-2023-33158 high 7.8 7.8 microsoft 3y ago Microsoft Excel Remote Code Execution Vulnerability
CVE-2023-33153 high 8.8 8.8 microsoft 3y ago Microsoft Outlook Remote Code Execution Vulnerability
CVE-2023-33152 high 7.8 7.8 microsoft 3y ago Microsoft ActiveX Remote Code Execution Vulnerability
CVE-2023-33149 high 7.8 7.8 microsoft 3y ago Microsoft Office Graphics Remote Code Execution Vulnerability
CVE-2023-33148 high 7.8 8.8 EXP microsoft 3y ago Microsoft Office Elevation of Privilege Vulnerability
CVE-2023-29335 high 7.5 7.5 windows windows microsoft 3y ago Microsoft Word Security Feature Bypass Vulnerability
CVE-2023-29333 low 3.3 3.3 microsoft 3y ago Microsoft Access Denial of Service Vulnerability
CVE-2023-23398 high 7.1 7.1 microsoft 3y ago Microsoft Excel Spoofing Vulnerability
CVE-2022-44696 high 7.8 7.8 microsoft 4y ago Microsoft Office Visio Remote Code Execution Vulnerability
CVE-2022-44695 high 7.8 7.8 microsoft 4y ago Microsoft Office Visio Remote Code Execution Vulnerability
CVE-2022-44694 high 7.8 7.8 microsoft 4y ago Microsoft Office Visio Remote Code Execution Vulnerability
CVE-2022-44702 high 7.8 7.8 windows windows microsoft 4y ago Windows Terminal Remote Code Execution Vulnerability
CVE-2022-41107 high 7.8 7.8 microsoft 4y ago Microsoft Office Graphics Remote Code Execution Vulnerability
CVE-2022-41106 high 8.8 8.8 microsoft 4y ago Microsoft Excel Remote Code Execution Vulnerability
CVE-2022-41063 high 7.8 7.8 microsoft 4y ago Microsoft Excel Remote Code Execution Vulnerability
CVE-2022-41061 high 7.8 7.8 microsoft 4y ago Microsoft Word Remote Code Execution Vulnerability
CVE-2022-38013 high 7.5 7.5 rhel rockyfedora fedora microsoft 4y ago RHSA-2022:6539: .NET 6.0 security and bugfix update (Moderate)
CVE-2022-29109 high 7.8 7.8 microsoft 4y ago Microsoft Excel Remote Code Execution Vulnerability
CVE-2022-29145 high 7.5 7.5 rhel sles rocky microsoft 4y ago RHSA-2022:2202: .NET Core 3.1 security, bug fix, and enhancement update (Important)
CVE-2022-29117 high 7.5 7.5 rhel sles rocky microsoft 4y ago RHSA-2022:2202: .NET Core 3.1 security, bug fix, and enhancement update (Important)
CVE-2022-26901 high 7.8 7.8 microsoft 4y ago Microsoft Excel Remote Code Execution Vulnerability
CVE-2022-24473 high 7.8 7.8 microsoft 4y ago Microsoft Excel Remote Code Execution Vulnerability
CVE-2022-24510 high 7.8 7.8 microsoft 4y ago Microsoft Office Visio Remote Code Execution Vulnerability
CVE-2022-24509 high 7.8 7.8 microsoft 4y ago Microsoft Office Visio Remote Code Execution Vulnerability
CVE-2022-24461 high 7.8 7.8 microsoft 4y ago Microsoft Office Visio Remote Code Execution Vulnerability
CVE-2022-24501 high 7.8 7.8 microsoft 4y ago VP9 Video Extensions Remote Code Execution Vulnerability
CVE-2022-24464 high 7.5 7.5 rockyfedora fedora rhel microsoft 4y ago RHSA-2022:0830: .NET 5.0 security and bugfix update (Important)
CVE-2022-24457 high 7.8 7.8 microsoft 4y ago HEIF Image Extensions Remote Code Execution Vulnerability
CVE-2022-24451 high 7.8 7.8 microsoft 4y ago VP9 Video Extensions Remote Code Execution Vulnerability
CVE-2022-23282 high 7.8 7.8 microsoft 4y ago Paint 3D Remote Code Execution Vulnerability
CVE-2022-22709 high 7.8 7.8 microsoft 4y ago VP9 Video Extensions Remote Code Execution Vulnerability
CVE-2022-21841 high 7.8 7.8 microsoft 4y ago Microsoft Excel Remote Code Execution Vulnerability
CVE-2022-21840 high 8.8 8.8 microsoft 4y ago Microsoft Office Remote Code Execution Vulnerability
CVE-2021-43875 high 7.8 7.8 microsoft 5y ago Microsoft Office Graphics Remote Code Execution Vulnerability
CVE-2021-43256 high 7.8 7.8 microsoft 5y ago Microsoft Excel Remote Code Execution Vulnerability
CVE-2021-42296 high 7.8 7.8 microsoft 5y ago Microsoft Word Remote Code Execution Vulnerability
CVE-2020-17091 high 7.8 7.8 microsoft 6y ago Microsoft Teams Remote Code Execution Vulnerability
CVE-2020-17003 high 7.8 7.8 microsoft 6y ago <p>A remote code execution vulnerability exists when the Base3D rendering engine improperly handles memory.</p> <p>An attacker who successfully exploited the vulnerability would gain execution on a v…
CVE-2020-16918 high 7.8 7.8 microsoft 6y ago <p>A remote code execution vulnerability exists when the Base3D rendering engine improperly handles memory.</p> <p>An attacker who successfully exploited the vulnerability would gain execution on a v…
CVE-2017-11936 high 8.8 8.8 microsoft 9y ago Microsoft SharePoint Enterprise Server 2016 allows an elevation of privilege vulnerability due to the way web requests are handled, aka "Microsoft SharePoint Elevation of Privilege Vulnerability".
CVE-2017-11935 high 7.8 7.8 microsoft 9y ago Microsoft Office 2016 Click-to-Run (C2R) allows a remote code execution vulnerability due to the way files are handled in memory, aka "Microsoft Excel Remote Code Execution Vulnerability".
CVE-2017-11932 high 8.1 8.1 microsoft 9y ago Microsoft Exchange Server 2016 CU5 and Microsoft Exchange Server 2016 CU5 allow a spoofing vulnerability due to the way Outlook Web Access (OWA) validates web requests, aka "Microsoft Exchange Spoofi…
CVE-2017-11930 high 7.5 7.5 windows windows microsoft 9y ago ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows …
CVE-2017-11918 high 7.5 8.5 EXP windows windows microsoft 9y ago ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to gain the same user rights as the current user, due to how the scripting engine …
CVE-2017-11916 high 7.5 7.5 microsoft 9y ago ChakraCore RCE Vulnerability
CVE-2017-11914 high 7.5 8.5 EXP windows windows microsoft 9y ago ChakraCore vulnerable to privilege escalation due to exposure from scriptFunction
CVE-2017-11913 high 7.5 7.5 windows windows microsoft 9y ago Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2…
CVE-2017-11912 high 7.5 7.5 windows windows microsoft 9y ago ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Internet Explorer and Microsoft Edge in W…
CVE-2017-11911 high 7.5 8.5 EXP windows windows microsoft 9y ago ChakraCore RCE Vulnerability
CVE-2017-11910 high 7.5 7.5 windows windows microsoft 9y ago ChakraCore vulnerable to remote code execution due to insufficient InlineCache check
CVE-2017-11909 high 7.5 8.5 EXP windows windows microsoft 9y ago ChakraCore vulnerable to remote code execution
CVE-2017-11908 high 7.5 7.5 windows windows microsoft 9y ago ChakraCore RCE Vulnerability
CVE-2017-11907 high 7.5 8.5 EXP windows windows microsoft 9y ago Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2…
CVE-2017-11905 high 7.5 7.5 windows windows microsoft 9y ago ChakraCore RCE Vulnerability
CVE-2017-11903 high 7.5 8.5 EXP windows windows microsoft 9y ago Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2…
CVE-2017-11901 high 7.5 7.5 windows windows microsoft 9y ago Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 …
CVE-2017-11895 high 7.5 7.5 windows windows microsoft 9y ago ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Internet Explorer and Microsoft Edge in Windows 1…
CVE-2017-11894 high 7.5 7.5 windows windows microsoft 9y ago ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and and Internet Explorer adn Microsoft Edge …
CVE-2017-11893 high 7.5 8.5 EXP windows windows microsoft 9y ago ChakraCore vulnerable to remote code execution
CVE-2017-11890 high 7.5 8.5 EXP windows windows microsoft 9y ago Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allow an attacker…
CVE-2017-11889 high 7.5 7.5 windows windows microsoft 9y ago ChakraCore RCE Vulnerability
CVE-2017-11888 high 7.5 7.5 windows windows microsoft 9y ago Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how Microsoft Edge…
CVE-2017-11886 high 7.5 7.5 windows windows microsoft 9y ago Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allow an attacker…
CVE-2017-11940 high 7.8 7.8 windows windows microsoft 9y ago The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Windows 7 SP1, Windows 8.1, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, 1709 and Windows Se…
CVE-2017-11937 high 7.8 7.8 windows windows microsoft 9y ago The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Windows 7 SP1, Windows 8.1, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, 1709 and Windows Se…
CVE-2017-8700 high 7.5 7.5 microsoft 9y ago Cross-origin Resource Sharing bypass in ASP.NET Core
CVE-2017-11884 high 7.8 7.8 microsoft 9y ago Microsoft Excel 2016 Click-to-Run (C2R) allows an attacker to run arbitrary code in the context of the current user by failing to properly handle objects in memory, aka "Microsoft Office Memory Corru…
CVE-2017-11883 high 7.5 7.5 microsoft 9y ago Denial of service in ASP.NET Core
CVE-2017-11879 high 8.8 8.8 microsoft 9y ago Open redirect in ASP.NET Core
CVE-2017-11878 high 7.8 7.8 microsoft 9y ago Microsoft Excel 2007 Service Pack 3, Microsoft Excel 2010 Service Pack 2, Microsoft Excel 2013 Service Pack 1, Microsoft Excel 2013 RT Service Pack 1, Microsoft Excel 2016, Microsoft Office Compatibi…
CVE-2017-11876 high 8.8 8.8 microsoft 9y ago Microsoft Project Server and Microsoft SharePoint Enterprise Server 2016 allow an attacker to use cross-site forgery to read content that they are not authorized to read, use the victim's identity to…
CVE-2017-11874 low 3.1 3.1 windows windows microsoft 9y ago Microsoft Edge in Microsoft Windows 10 1703, 1709, Windows Server, version 1709, and ChakraCore allows an attacker to bypass Control Flow Guard (CFG) to run arbitrary code on a target system, due to …
CVE-2017-11873 high 7.5 8.5 EXP windows windows microsoft 9y ago ChakraCore and Microsoft Edge in Windows 10 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to ho…
CVE-2017-11871 high 7.5 7.5 windows windows microsoft 9y ago Chakra Core vulnerable to privilege escalation due to reading an invalid pointer
CVE-2017-11870 high 7.5 8.5 EXP windows windows microsoft 9y ago Chakra Core vulnerable to privilege escalation when writing to JavaScript null scope objects
CVE-2017-11869 high 7.5 7.5 windows windows microsoft 9y ago Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 …
CVE-2017-11866 high 7.5 7.5 windows windows microsoft 9y ago ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due…
CVE-2017-11862 high 7.5 7.5 windows windows microsoft 9y ago Chakra Core vulnerable to privilege escalation due to type confusion
CVE-2017-11861 high 7.5 8.5 EXP windows windows microsoft 9y ago Microsoft Edge in Windows 10 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engin…
CVE-2017-11858 high 7.5 7.5 windows windows microsoft 9y ago ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Microsoft Edge and Internet Explorer in Wi…
CVE-2017-11856 high 7.5 7.5 windows windows microsoft 9y ago Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 …
CVE-2017-11855 high 7.5 8.5 EXP windows windows microsoft 9y ago Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2…
CVE-2017-11854 high 8.8 8.8 microsoft 9y ago Microsoft Word 2007 Service Pack 3, Microsoft Word 2010 Service Pack 2, Microsoft Office 2010 Service Pack 2, and Microsoft Office Compatibility Pack Service Pack 3 allow an attacker to run arbitrary…
CVE-2017-11846 high 7.5 7.5 windows windows microsoft 9y ago ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Microsoft Edge and Internet Explorer in Wi…
CVE-2017-11845 high 7.5 7.5 windows windows microsoft 9y ago Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user, due to how Microsoft Edge handles objects in memory, aka "Microsoft Edge M…
CVE-2017-11843 high 7.5 7.5 windows windows microsoft 9y ago ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Microsoft Edge and Internet Explorer in Window…
CVE-2017-11841 high 7.5 8.5 EXP windows windows microsoft 9y ago ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due…