Microsoft Corporation

678 tracked vulnerabilities.

CVE-2017-0066 MEDIUM
Microsoft Edge - Same Origin Policy Bypass for HTML Elements
Mar 17, 2017
CVSS 4.2
EPSS 0.24
CVE-2017-0065 MEDIUM
Microsoft Edge - Information Disclosure via Crafted Web Site
Mar 17, 2017
CVSS 4.3
EPSS 0.27
CVE-2017-0063 MEDIUM
Windows Color Management Module - Information Disclosure via ICM32.dll Memory Handling
Mar 17, 2017
CVSS 6.5
EPSS 0.16
CVE-2017-0062 MEDIUM
Microsoft Windows GDI+ - Information Disclosure via Crafted Website
Mar 17, 2017
CVSS 4.7
EPSS 0.03
CVE-2017-0061 MEDIUM
Windows Vista SP2, Windows Server 2008 SP2/R2, Windows 7 SP1 - ASLR Bypass via ICM32.dll Memory Handling
Mar 17, 2017
CVSS 5.3
EPSS 0.18
CVE-2017-0060 MEDIUM
Microsoft Windows GDI - Unauthorized Memory Information Exposure via Crafted Website
Mar 17, 2017
CVSS 5.5
EPSS 0.03
CVE-2017-0059 MEDIUM KEV
Internet Explorer 9-11 - Information Disclosure via Crafted Web Site
Mar 17, 2017
CVSS 4.3
EPSS 0.84
CVE-2017-0057 MEDIUM
Windows DNS Client - Information Disclosure via Malicious DNS Query
Mar 17, 2017
CVSS 4.3
EPSS 0.31
CVE-2017-0056 HIGH
Microsoft Windows - Privilege Escalation
Mar 17, 2017
CVSS 7.8
EPSS 0.07
CVE-2017-0055 MEDIUM
Microsoft IIS Server - Cross-Site Scripting via Crafted Request
Mar 17, 2017
CVSS 6.1
EPSS 0.01
CVE-2017-0053 HIGH
Microsoft Office - Remote Code Execution via Crafted Document
Mar 17, 2017
CVSS 7.8
EPSS 0.23
CVE-2017-0052 HIGH
Microsoft Excel - Remote Code Execution via Crafted Document
Mar 17, 2017
CVSS 7.8
EPSS 0.26
CVE-2017-0051 MEDIUM
Microsoft Windows 10 1607 and Windows Server 2016 - Denial of Service via Crafted Office Document
Mar 17, 2017
CVSS 5.4
EPSS 0.01
CVE-2017-0050 HIGH
Windows Kernel - Elevation of Privilege via Improper Permission Enforcement
Mar 17, 2017
CVSS 7.8
EPSS 0.04
CVE-2017-0049 MEDIUM
Internet Explorer 11 - Information Disclosure via VBScript Engine
Mar 17, 2017
CVSS 4.3
EPSS 0.22
CVE-2017-0047 HIGH
Microsoft Windows - Privilege Escalation
Mar 17, 2017
CVSS 7.8
EPSS 0.02
CVE-2017-0045 MEDIUM
Windows DVD Maker - Information Disclosure via Crafted .msdvd File Parsing
Mar 17, 2017
CVSS 5.5
EPSS 0.04
CVE-2017-0043 MEDIUM
Microsoft Windows 10 - Information Disclosure
Mar 17, 2017
CVSS 5.3
EPSS 0.06
CVE-2017-0042 LOW
Windows Media Player - Information Disclosure via Crafted Website
Mar 17, 2017
CVSS 3.1
EPSS 0.14
CVE-2017-0040 HIGH
Internet Explorer 9-11 - Remote Code Execution via Scripting Engine Memory Corruption
Mar 17, 2017
CVSS 7.5
EPSS 0.19
CVE-2017-0039 HIGH
Windows Vista SP2 and Server 2008 SP2 - Local Privilege Escalation via DLL Loading
Mar 17, 2017
CVSS 7.8
EPSS 0.10
CVE-2017-0035 HIGH
Microsoft Edge - Remote Code Execution via Memory Corruption in Scripting Engine
Mar 17, 2017
CVSS 7.5
EPSS 0.16
CVE-2017-0034 HIGH
Microsoft Edge - Remote Code Execution via Memory Corruption
Mar 17, 2017
CVSS 7.5
EPSS 0.24
CVE-2017-0033 MEDIUM
Microsoft Internet Explorer 11 and Edge - Web Content Spoofing via Crafted Website
Mar 17, 2017
CVSS 4.3
EPSS 0.10
CVE-2017-0032 HIGH
Microsoft Edge - Remote Code Execution via Memory Corruption in Scripting Engine
Mar 17, 2017
CVSS 7.5
EPSS 0.16
Products
Microsoft Edge 66 Microsoft Windows 63 Internet Explorer 41 Microsoft Office 37 ChakraCore, Microsoft Edge 30 Windows Uniscribe 30 Browser 20 Microsoft Scripting Engine 18 Windows Hyper-V 17 Office 14 Edge 13 Windows kernel 13 Hyper-V 12 Windows 12 ChakraCore, Microsoft Edge, Internet Explorer 9 Windows Kernel 9 Uniscribe 8 Win32k 8 Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 8 Malware Protection Engine 7 Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 7 Server Message Block 1.0 7 Microsoft Graphics Component 6 Microsoft browsers 6 Windows GDI+ 6 Windows SMB 6 ASP.NET Core 5 ChakraCore 5 Device Guard 5 Internet Explorer, Microsoft Edge 5
Quick Filters
Critical CVEs With Exploits In CISA KEV