Vulnerabilities > Microsoft > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-07-16 CVE-2021-34458 Unspecified vulnerability in Microsoft Windows Server 2016 and Windows Server 2019
Windows Kernel Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
 9.9
9.9
2021-07-14 CVE-2021-34473 Server-Side Request Forgery (SSRF) vulnerability in Microsoft Exchange Server 2013/2016/2019
Microsoft Exchange Server Remote Code Execution Vulnerability
network
low complexity
microsoft CWE-918
critical
 9.1
9.1
2021-07-14 CVE-2021-34523 Improper Authentication vulnerability in Microsoft Exchange Server 2013/2016/2019
Microsoft Exchange Server Elevation of Privilege Vulnerability
local
low complexity
microsoft CWE-287
critical
 9.0
9.0
2021-06-08 CVE-2021-31962 Unspecified vulnerability in Microsoft products
Kerberos AppContainer Security Feature Bypass Vulnerability
network
low complexity
microsoft
critical
 9.4
9.4
2021-05-11 CVE-2021-28476 Unspecified vulnerability in Microsoft products
Windows Hyper-V Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
 9.9
9.9
2021-05-11 CVE-2021-31166 Use After Free vulnerability in Microsoft products
HTTP Protocol Stack Remote Code Execution Vulnerability
network
low complexity
microsoft CWE-416
critical
 9.8
9.8
2021-04-13 CVE-2021-28483 Unspecified vulnerability in Microsoft Exchange Server 2013/2016/2019
Microsoft Exchange Server Remote Code Execution Vulnerability
low complexity
microsoft
critical
 9.0
9.0
2021-04-13 CVE-2021-28481 Unspecified vulnerability in Microsoft Exchange Server 2013/2016/2019
Microsoft Exchange Server Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
 9.8
9.8
2021-04-13 CVE-2021-28480 Unspecified vulnerability in Microsoft Exchange Server 2013/2016/2019
Microsoft Exchange Server Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
 9.8
9.8
2021-03-24 CVE-2021-28967 Unspecified vulnerability in Microsoft Visual Studio Code
The unofficial MATLAB extension before 2.0.1 for Visual Studio Code allows attackers to execute arbitrary code via a crafted workspace because of lint configuration settings.
network
low complexity
microsoft
critical
 9.8
9.8