Vulnerabilities > Microsoft > Critical

DATE CVE VULNERABILITY TITLE RISK
2019-04-09 CVE-2019-0756 XXE vulnerability in Microsoft products
A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'.
network
microsoft CWE-611
critical
 9.3
9.3
2019-04-09 CVE-2019-0748 Unspecified vulnerability in Microsoft Office 2010
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'.
network
microsoft
critical
 9.3
9.3
2019-04-08 CVE-2019-0617 Unspecified vulnerability in Microsoft products
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'.
network
microsoft
critical
 9.3
9.3
2019-04-03 CVE-2018-4126 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
A memory corruption issue was addressed with improved memory handling.
network
apple microsoft CWE-119
critical
 9.3
9.3
2019-03-05 CVE-2019-0728 Code Injection vulnerability in Microsoft Visual Studio Code
A remote code execution vulnerability exists in Visual Studio Code when it process environment variables after opening a project, aka 'Visual Studio Code Remote Code Execution Vulnerability'.
network
microsoft CWE-94
critical
 9.3
9.3
2019-03-05 CVE-2019-0724 Unspecified vulnerability in Microsoft Exchange Server
An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'.
network
microsoft
critical
 9.3
9.3
2019-03-05 CVE-2019-0675 Unspecified vulnerability in Microsoft Office 2010
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'.
network
microsoft
critical
 9.3
9.3
2019-03-05 CVE-2019-0674 Unspecified vulnerability in Microsoft Office and Office 365 Proplus
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'.
network
microsoft
critical
 9.3
9.3
2019-03-05 CVE-2019-0673 Unspecified vulnerability in Microsoft Office and Office 365 Proplus
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'.
network
microsoft
critical
 9.3
9.3
2019-03-05 CVE-2019-0672 Unspecified vulnerability in Microsoft Office and Office 365 Proplus
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'.
network
microsoft
critical
 9.3
9.3