Microsoft Corporation

678 tracked vulnerabilities.

CVE-2017-0031 HIGH
Microsoft Office 2010 SP2, Word 2007 SP3, and Word 2010 SP2 - Remote Code Execution via Crafted Document
Mar 17, 2017
CVSS 7.8
EPSS 0.22
CVE-2017-0030 HIGH
Microsoft Office/Word 2007/2010 RCE via Crafted Document
Mar 17, 2017
CVSS 7.8
EPSS 0.28
CVE-2017-0029 MEDIUM
Microsoft Office/Word 2010 SP2, 2013 RT SP1, 2016 - DoS via Crafted Document
Mar 17, 2017
CVSS 5.5
EPSS 0.23
CVE-2017-0027 MEDIUM
Microsoft Excel Information Disclosure via Crafted Office Document
Mar 17, 2017
CVSS 4.7
EPSS 0.30
CVE-2017-0026 HIGH
Microsoft Windows 10 Gold/1511/1607 & Windows Server 2016 - Privile...
Mar 17, 2017
CVSS 7.8
EPSS 0.02
CVE-2017-0025 HIGH
Microsoft Windows - Privilege Escalation
Mar 17, 2017
CVSS 7.8
EPSS 0.01
CVE-2017-0024 HIGH
Microsoft Windows 10 1607 & Windows Server 2016 - Privilege Escalation
Mar 17, 2017
CVSS 7.8
EPSS 0.02
CVE-2017-0023 HIGH
Microsoft Edge PDF Library - Remote Code Execution via Crafted PDF File
Mar 17, 2017
CVSS 7.5
EPSS 0.22
CVE-2017-0022 MEDIUM KEV
Microsoft XML Core Services - Information Disclosure via Memory Object Handling
Mar 17, 2017
CVSS 6.5
EPSS 0.37
CVE-2017-0021 CRITICAL
Microsoft Windows 10 <1607 & Windows Server 2016 - RCE
Mar 17, 2017
CVSS 9.0
EPSS 0.01
CVE-2017-0020 HIGH
Microsoft Excel 2016/2010 SP2/2013 RT SP1 & Office Web Apps Server 2013 SP1 - RCE via Crafted Document
Mar 17, 2017
CVSS 7.8
EPSS 0.22
CVE-2017-0019 HIGH
Microsoft Word 2016 - Remote Code Execution or Denial of Service via Crafted Document
Mar 17, 2017
CVSS 7.8
EPSS 0.04
CVE-2017-0018 HIGH
Internet Explorer 10 and 11 - Remote Code Execution via Memory Corruption
Mar 17, 2017
CVSS 7.5
EPSS 0.21
CVE-2017-0017 MEDIUM
Microsoft Edge - Cross-Site Scripting via RegEx Class in XSS Filter
Mar 17, 2017
CVSS 6.1
EPSS 0.02
CVE-2017-0016 MEDIUM
Microsoft Windows SMBv2/SMBv3 - Remote Code Execution via Crafted Packet
Mar 17, 2017
CVSS 5.9
EPSS 0.49
CVE-2017-0015 HIGH
Microsoft Edge - Remote Code Execution via Memory Corruption in Scripting Engine
Mar 17, 2017
CVSS 7.5
EPSS 0.26
CVE-2017-0014 HIGH
Microsoft Office - Remote Code Execution
Mar 17, 2017
CVSS 7.5
EPSS 0.24
CVE-2017-0012 MEDIUM
Microsoft Internet Explorer 11 and Microsoft Edge - Web Content Spoofing
Mar 17, 2017
CVSS 4.3
EPSS 0.08
CVE-2017-0011 MEDIUM
Microsoft Edge - Information Disclosure via Crafted Web Site
Mar 17, 2017
CVSS 4.3
EPSS 0.08
CVE-2017-0010 HIGH
Microsoft Edge - Remote Code Execution via Memory Corruption in Scripting Engine
Mar 17, 2017
CVSS 7.5
EPSS 0.25
CVE-2017-0009 MEDIUM
Internet Explorer 9-11 - Information Disclosure via Crafted Web Site
Mar 17, 2017
CVSS 4.3
EPSS 0.11
CVE-2017-0008 MEDIUM
Internet Explorer 9-11 - Information Disclosure via Crafted Web Site
Mar 17, 2017
CVSS 4.3
EPSS 0.11
CVE-2017-0007 MEDIUM
Microsoft Windows 10/Server 2016 Device Guard PowerShell Security Feature Bypass
Mar 17, 2017
CVSS 5.5
EPSS 0.01
CVE-2017-0006 HIGH
Microsoft Excel 2007 SP3 RCE/DoS via Crafted Document
Mar 17, 2017
CVSS 7.8
EPSS 0.26
CVE-2017-0005 HIGH KEV
Microsoft Windows - Privilege Escalation
Mar 17, 2017
CVSS 7.8
EPSS 0.13
Products
Microsoft Edge 66 Microsoft Windows 63 Internet Explorer 41 Microsoft Office 37 ChakraCore, Microsoft Edge 30 Windows Uniscribe 30 Browser 20 Microsoft Scripting Engine 18 Windows Hyper-V 17 Office 14 Edge 13 Windows kernel 13 Hyper-V 12 Windows 12 ChakraCore, Microsoft Edge, Internet Explorer 9 Windows Kernel 9 Uniscribe 8 Win32k 8 Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 8 Malware Protection Engine 7 Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 7 Server Message Block 1.0 7 Microsoft Graphics Component 6 Microsoft browsers 6 Windows GDI+ 6 Windows SMB 6 ASP.NET Core 5 ChakraCore 5 Device Guard 5 Internet Explorer, Microsoft Edge 5
Quick Filters
Critical CVEs With Exploits In CISA KEV