Microsoft Corporation

678 tracked vulnerabilities.

CVE-2017-8684 MEDIUM
Windows GDI+ Kernel Memory Address Disclosure in Windows 7 SP1, 8.1, Server 2008 SP2/R2 SP1, Server 2012/2012 R2, RT 8.1
Sep 13, 2017
CVSS 5.5
EPSS 0.27
CVE-2017-8683 MEDIUM
Windows Graphics - Remote Code Execution via Embedded Font Handling
Sep 13, 2017
CVSS 5.5
EPSS 0.18
CVE-2017-8682 HIGH
Microsoft Office 2007 - Improper Input Validation
Sep 13, 2017
CVSS 8.8
EPSS 0.66
CVE-2017-8681 MEDIUM
Windows Kernel - Information Disclosure via Improper Memory Handling
Sep 13, 2017
CVSS 5.5
EPSS 0.20
CVE-2017-8680 MEDIUM
Windows Kernel - Information Disclosure via Improper Memory Object Handling
Sep 13, 2017
CVSS 5.5
EPSS 0.27
CVE-2017-8679 MEDIUM
Windows Kernel - Information Disclosure via Improper Memory Object Handling
Sep 13, 2017
CVSS 5.5
EPSS 0.06
CVE-2017-8678 MEDIUM
Windows Kernel - Information Disclosure via Improper Memory Handling
Sep 13, 2017
CVSS 5.5
EPSS 0.20
CVE-2017-8677 MEDIUM
Windows GDI+ - Kernel Memory Address Disclosure
Sep 13, 2017
CVSS 5.5
EPSS 0.08
CVE-2017-8676 LOW
Microsoft Live Meeting - Information Disclosure
Sep 13, 2017
CVSS 3.3
EPSS 0.08
CVE-2017-8675 HIGH
Windows Kernel-Mode Drivers - Elevation of Privilege via Win32k Memory Handling
Sep 13, 2017
CVSS 7.0
EPSS 0.01
CVE-2017-8660 HIGH
Microsoft Edge - Remote Code Execution via JavaScript Engine Memory Corruption
Sep 13, 2017
CVSS 8.8
EPSS 0.16
CVE-2017-8649 HIGH
Microsoft Edge - Remote Code Execution via JavaScript Engine Memory Corruption
Sep 13, 2017
CVSS 7.5
EPSS 0.18
CVE-2017-8648 MEDIUM
Microsoft Edge in Windows 10 Version 1703 - Information Disclosure via Memory Object Handling
Sep 13, 2017
CVSS 4.3
EPSS 0.15
CVE-2017-8643 MEDIUM
Microsoft Edge - Information Disclosure via Clipboard Event Handling
Sep 13, 2017
CVSS 4.3
EPSS 0.13
CVE-2017-8632 HIGH
Microsoft Excel - Remote Code Execution via Memory Corruption
Sep 13, 2017
CVSS 7.8
EPSS 0.19
CVE-2017-8631 HIGH
Microsoft Excel - Remote Code Execution via Memory Corruption
Sep 13, 2017
CVSS 7.8
EPSS 0.21
CVE-2017-8630 HIGH
Microsoft Office 2016 - Remote Code Execution via Memory Corruption
Sep 13, 2017
CVSS 7.8
EPSS 0.23
CVE-2017-8629 MEDIUM
Microsoft SharePoint Server 2013 Service Pack 1 - Cross-Site Scripting via Web Request
Sep 13, 2017
CVSS 5.4
EPSS 0.01
CVE-2017-8628 MEDIUM
Microsoft Bluetooth Driver - Spoofing
Sep 13, 2017
CVSS 6.8
EPSS 0.00
CVE-2017-8597 MEDIUM
Microsoft Edge in Windows 10 Version 1703 - Information Disclosure via Memory Object Handling
Sep 13, 2017
CVSS 4.3
EPSS 0.15
CVE-2017-8567 HIGH
Microsoft Excel for Mac 2011 - Remote Code Execution via Memory Corruption
Sep 13, 2017
CVSS 7.8
EPSS 0.32
CVE-2017-11766 HIGH
Microsoft Edge - Remote Code Execution via Memory Corruption
Sep 13, 2017
CVSS 7.5
EPSS 0.21
CVE-2017-11764 HIGH
Microsoft Edge - Remote Code Execution via Scripting Engine Memory Corruption
Sep 13, 2017
CVSS 7.5
EPSS 0.77
CVE-2017-11761 MEDIUM
Microsoft Exchange <2013-2016 - Info Disclosure
Sep 13, 2017
CVSS 5.3
EPSS 0.09
CVE-2017-0161 HIGH
Windows NetBT Session Services - Remote Code Execution via Race Condition
Sep 13, 2017
CVSS 8.1
EPSS 0.17
Products
Microsoft Edge 66 Microsoft Windows 63 Internet Explorer 41 Microsoft Office 37 ChakraCore, Microsoft Edge 30 Windows Uniscribe 30 Browser 20 Microsoft Scripting Engine 18 Windows Hyper-V 17 Office 14 Edge 13 Windows kernel 13 Hyper-V 12 Windows 12 ChakraCore, Microsoft Edge, Internet Explorer 9 Windows Kernel 9 Uniscribe 8 Win32k 8 Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 8 Malware Protection Engine 7 Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 7 Server Message Block 1.0 7 Microsoft Graphics Component 6 Microsoft browsers 6 Windows GDI+ 6 Windows SMB 6 ASP.NET Core 5 ChakraCore 5 Device Guard 5 Internet Explorer, Microsoft Edge 5
Quick Filters
Critical CVEs With Exploits In CISA KEV