Microsoft Corporation

678 tracked vulnerabilities.

CVE-2017-11863 MEDIUM
Microsoft Edge - Security Feature Bypass via CSP Validation
Nov 15, 2017
CVSS 6.1
EPSS 0.01
CVE-2017-11862 HIGH
ChakraCore and Microsoft Edge - Memory Corruption in Scripting Engine
Nov 15, 2017
CVSS 7.5
EPSS 0.21
CVE-2017-11861 HIGH
Microsoft Edge - Memory Corruption in Scripting Engine
Nov 15, 2017
CVSS 7.5
EPSS 0.76
CVE-2017-11858 HIGH
Microsoft Browsers - Privilege Escalation
Nov 15, 2017
CVSS 7.5
EPSS 0.24
CVE-2017-11856 HIGH
Microsoft Windows - Privilege Escalation
Nov 15, 2017
CVSS 7.5
EPSS 0.21
CVE-2017-11855 HIGH
Microsoft Windows - Privilege Escalation
Nov 15, 2017
CVSS 7.5
EPSS 0.49
CVE-2017-11854 HIGH
Microsoft Word <2010 - Code Injection
Nov 15, 2017
CVSS 8.8
EPSS 0.19
CVE-2017-11853 MEDIUM
Windows Kernel - Information Disclosure via Improper Memory Initialization
Nov 15, 2017
CVSS 5.5
EPSS 0.10
CVE-2017-11852 MEDIUM
Microsoft GDI Component - Info Disclosure
Nov 15, 2017
CVSS 4.7
EPSS 0.04
CVE-2017-11851 MEDIUM
Windows Kernel - Information Disclosure via Improper Memory Handling
Nov 15, 2017
CVSS 4.7
EPSS 0.04
CVE-2017-11850 LOW
Microsoft Graphics Component - Information Disclosure via Improper Memory Handling
Nov 15, 2017
CVSS 2.5
EPSS 0.04
CVE-2017-11849 MEDIUM
Windows Kernel - Information Disclosure via Improper Memory Initialization
Nov 15, 2017
CVSS 4.7
EPSS 0.04
CVE-2017-11848 MEDIUM
Microsoft Internet Explorer - Info Disclosure
Nov 15, 2017
CVSS 4.3
EPSS 0.13
CVE-2017-11847 HIGH
Windows Kernel - Elevation of Privilege via Memory Object Handling
Nov 15, 2017
CVSS 7.8
EPSS 0.14
CVE-2017-11846 HIGH
Microsoft <various> - Privilege Escalation
Nov 15, 2017
CVSS 7.5
EPSS 0.28
CVE-2017-11845 HIGH
Microsoft Edge < Windows 10 1703 - Code Injection
Nov 15, 2017
CVSS 7.5
EPSS 0.21
CVE-2017-11844 MEDIUM
Microsoft Edge - Information Disclosure via Memory Object Handling
Nov 15, 2017
CVSS 4.3
EPSS 0.13
CVE-2017-11843 HIGH
Microsoft Windows <10 - Privilege Escalation
Nov 15, 2017
CVSS 7.5
EPSS 0.28
CVE-2017-11842 MEDIUM
Windows Kernel - Information Disclosure via Improper Memory Initialization
Nov 15, 2017
CVSS 4.7
EPSS 0.04
CVE-2017-11841 HIGH
ChakraCore and Microsoft Edge - Privilege Escalation
Nov 15, 2017
CVSS 7.5
EPSS 0.80
CVE-2017-11840 HIGH
ChakraCore and Microsoft Edge - Privilege Escalation
Nov 15, 2017
CVSS 7.5
EPSS 0.80
CVE-2017-11838 HIGH
Microsoft Windows - Privilege Escalation
Nov 15, 2017
CVSS 7.5
EPSS 0.28
CVE-2017-11837 HIGH
ChakraCore and Internet Explorer - Memory Corruption in Scripting Engine
Nov 15, 2017
CVSS 7.5
EPSS 0.28
CVE-2017-11836 HIGH
ChakraCore, Microsoft Edge - Memory Corruption
Nov 15, 2017
CVSS 7.5
EPSS 0.21
CVE-2017-11835 MEDIUM
Microsoft graphics - Info Disclosure
Nov 15, 2017
CVSS 5.5
EPSS 0.03
Products
Microsoft Edge 66 Microsoft Windows 63 Internet Explorer 41 Microsoft Office 37 ChakraCore, Microsoft Edge 30 Windows Uniscribe 30 Browser 20 Microsoft Scripting Engine 18 Windows Hyper-V 17 Office 14 Edge 13 Windows kernel 13 Hyper-V 12 Windows 12 ChakraCore, Microsoft Edge, Internet Explorer 9 Windows Kernel 9 Uniscribe 8 Win32k 8 Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 8 Malware Protection Engine 7 Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 7 Server Message Block 1.0 7 Microsoft Graphics Component 6 Microsoft browsers 6 Windows GDI+ 6 Windows SMB 6 ASP.NET Core 5 ChakraCore 5 Device Guard 5 Internet Explorer, Microsoft Edge 5
Quick Filters
Critical CVEs With Exploits In CISA KEV