Vulnerabilities > Microsoft > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-09-10 CVE-2024-43491 Unspecified vulnerability in Microsoft Windows 10 1507
Microsoft is aware of a vulnerability in Servicing Stack that has rolled back the fixes for some vulnerabilities affecting Optional Components on Windows 10, version 1507 (initial version released July 2015).
network
low complexity
microsoft
critical
 9.8
9.8
2024-08-21 CVE-2024-7971 Type Confusion vulnerability in multiple products
Type confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to exploit heap corruption via a crafted HTML page.
network
low complexity
google microsoft CWE-843
critical
 9.6
9.6
2024-08-13 CVE-2024-38063 Unspecified vulnerability in Microsoft products
Windows TCP/IP Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
 9.8
9.8
2024-08-13 CVE-2024-38108 Cross-site Scripting vulnerability in Microsoft Azure Stack HUB
Azure Stack Hub Spoofing Vulnerability
network
low complexity
microsoft CWE-79
critical
 9.3
9.3
2024-08-13 CVE-2024-38159 Unspecified vulnerability in Microsoft Windows 10 1607 and Windows Server 2016
Windows Network Virtualization Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
 9.1
9.1
2024-08-13 CVE-2024-38160 Unspecified vulnerability in Microsoft Windows 10 1607 and Windows Server 2016
Windows Network Virtualization Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
 9.1
9.1
2024-08-13 CVE-2024-38199 Unspecified vulnerability in Microsoft products
Windows Line Printer Daemon (LPD) Service Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
 9.8
9.8
2024-08-12 CVE-2024-38219 Type Confusion vulnerability in Microsoft Edge Chromium
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
network
high complexity
microsoft CWE-843
critical
 9.0
9.0
2024-07-31 CVE-2024-38182 Unspecified vulnerability in Microsoft Dynamics 365 7.0
Weak authentication in Microsoft Dynamics 365 allows an unauthenticated attacker to elevate privileges over a network.
network
low complexity
microsoft
critical
 9.8
9.8
2024-07-09 CVE-2024-38089 Unspecified vulnerability in Microsoft Defender for IOT
Microsoft Defender for IoT Elevation of Privilege Vulnerability
network
low complexity
microsoft
critical
 9.9
9.9