Microsoft Corporation

678 tracked vulnerabilities.

CVE-2017-11796 HIGH
ChakraCore and Microsoft Edge in Windows 10 1703 - Memory Corruption
Oct 13, 2017
CVSS 7.5
EPSS 0.24
CVE-2017-11794 MEDIUM
Microsoft Edge - Information Disclosure via Memory Object Handling
Oct 13, 2017
CVSS 4.3
EPSS 0.13
CVE-2017-11793 HIGH
Microsoft Windows - Memory Corruption
Oct 13, 2017
CVSS 7.5
EPSS 0.62
CVE-2017-11792 HIGH
ChakraCore & Microsoft Edge in Windows 10 1703 - Memory Corruption
Oct 13, 2017
CVSS 7.5
EPSS 0.24
CVE-2017-11790 MEDIUM
Microsoft Windows - Info Disclosure
Oct 13, 2017
CVSS 4.3
EPSS 0.13
CVE-2017-11786 HIGH
Microsoft Lync/Skype for Business - Privilege Escalation
Oct 13, 2017
CVSS 8.8
EPSS 0.11
CVE-2017-11785 MEDIUM
Microsoft Windows - Info Disclosure
Oct 13, 2017
CVSS 5.5
EPSS 0.23
CVE-2017-11784 MEDIUM
Microsoft Windows Kernel - Info Disclosure
Oct 13, 2017
CVSS 5.5
EPSS 0.08
CVE-2017-11783 HIGH
Windows 8.1, 10, RT 8.1, Server 2012 R2, 2016 - Elevation of Privilege via ALPC
Oct 13, 2017
CVSS 7.0
EPSS 0.04
CVE-2017-11782 HIGH
Microsoft Windows 10 1607 & Windows Server 2016 - Privilege Escalation
Oct 13, 2017
CVSS 7.8
EPSS 0.01
CVE-2017-11781 HIGH
Microsoft Windows SMB - Denial of Service via Specially Crafted Requests
Oct 13, 2017
CVSS 7.5
EPSS 0.22
CVE-2017-11780 HIGH
Windows SMBv1 - Remote Code Execution via Malicious Request Handling
Oct 13, 2017
CVSS 7.0
EPSS 0.10
CVE-2017-11779 HIGH
Microsoft Windows DNSAPI.dll - Remote Code Execution via Malformed DNS Response
Oct 13, 2017
CVSS 8.1
EPSS 0.38
CVE-2017-11777 MEDIUM
Microsoft SharePoint Enterprise <2013 SP1 & 2016 - XSS
Oct 13, 2017
CVSS 5.4
EPSS 0.01
CVE-2017-11776 HIGH
Microsoft Outlook 2016 - Info Disclosure
Oct 13, 2017
CVSS 7.5
EPSS 0.19
CVE-2017-11775 MEDIUM
Microsoft SharePoint Enterprise Server 2013 SP1 & 2016 - XSS
Oct 13, 2017
CVSS 5.4
EPSS 0.01
CVE-2017-11774 HIGH KEV
Microsoft Outlook <2016 - Command Injection
Oct 13, 2017
CVSS 7.8
EPSS 0.86
CVE-2017-11772 HIGH
Microsoft Windows - Info Disclosure
Oct 13, 2017
CVSS 7.5
EPSS 0.23
CVE-2017-11771 CRITICAL
Windows Search - Remote Code Execution via DNS Response Handling
Oct 13, 2017
CVSS 9.8
EPSS 0.66
CVE-2017-11769 HIGH
Microsoft Windows TRIE - Remote Code Execution via DLL Loading
Oct 13, 2017
CVSS 7.8
EPSS 0.34
CVE-2017-11765 MEDIUM
Microsoft Windows - Info Disclosure
Oct 13, 2017
CVSS 5.5
EPSS 0.08
CVE-2017-11763 HIGH
Microsoft Graphics Component - Remote Code Execution via Embedded Font Handling
Oct 13, 2017
CVSS 8.8
EPSS 0.41
CVE-2017-11762 HIGH
Microsoft Graphics Component - Remote Code Execution via Embedded Font Handling
Oct 13, 2017
CVSS 8.8
EPSS 0.41
CVE-2017-8759 HIGH KEV
Microsoft .NET Framework 2.0, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7 - Remote Code Execution
Sep 13, 2017
CVSS 7.8
EPSS 0.94
CVE-2017-8758 MEDIUM
Microsoft Exchange Server 2016 - Cross-Site Scripting in Outlook Web Access
Sep 13, 2017
CVSS 6.1
EPSS 0.01
Products
Microsoft Edge 66 Microsoft Windows 63 Internet Explorer 41 Microsoft Office 37 ChakraCore, Microsoft Edge 30 Windows Uniscribe 30 Browser 20 Microsoft Scripting Engine 18 Windows Hyper-V 17 Office 14 Edge 13 Windows kernel 13 Hyper-V 12 Windows 12 ChakraCore, Microsoft Edge, Internet Explorer 9 Windows Kernel 9 Uniscribe 8 Win32k 8 Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 8 Malware Protection Engine 7 Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 7 Server Message Block 1.0 7 Microsoft Graphics Component 6 Microsoft browsers 6 Windows GDI+ 6 Windows SMB 6 ASP.NET Core 5 ChakraCore 5 Device Guard 5 Internet Explorer, Microsoft Edge 5
Quick Filters
Critical CVEs With Exploits In CISA KEV