Vulnerabilities > Microsoft > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-15 | CVE-2021-43899 | Unspecified vulnerability in Microsoft Wireless Display Adapter Firmware 2.0.8350/2.0.8365/2.0.8372 Microsoft 4K Wireless Display Adapter Remote Code Execution Vulnerability | 9.8 |
| 2021-12-15 | CVE-2021-43905 | Unspecified vulnerability in Microsoft Office Microsoft Office app Remote Code Execution Vulnerability | 9.6 |
| 2021-12-15 | CVE-2021-43907 | Unspecified vulnerability in Microsoft Windows Subsystem for Linux 0.63.4/0.63.5 Visual Studio Code WSL Extension Remote Code Execution Vulnerability | 9.8 |
| 2021-08-13 | CVE-2021-37705 | Incorrect Authorization vulnerability in Microsoft Onefuzz OneFuzz is an open source self-hosted Fuzzing-As-A-Service platform. | 10.0 |
| 2021-03-24 | CVE-2021-28967 | Unspecified vulnerability in Microsoft Visual Studio Code The unofficial MATLAB extension before 2.0.1 for Visual Studio Code allows attackers to execute arbitrary code via a crafted workspace because of lint configuration settings. | 9.8 |
| 2021-02-09 | CVE-2021-21132 | Improper Restriction of Rendered UI Layers or Frames vulnerability in multiple products Inappropriate implementation in DevTools in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially perform a sandbox escape via a crafted Chrome Extension. | 9.6 |
| 2021-02-09 | CVE-2021-21124 | Use After Free vulnerability in multiple products Potential user after free in Speech Recognizer in Google Chrome on Android prior to 88.0.4324.96 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. | 9.6 |
| 2021-02-09 | CVE-2021-21121 | Use After Free vulnerability in multiple products Use after free in Omnibox in Google Chrome on Linux prior to 88.0.4324.96 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. | 9.6 |
| 2020-07-14 | CVE-2020-1350 | Unspecified vulnerability in Microsoft products A remote code execution vulnerability exists in Windows Domain Name System servers when they fail to properly handle requests, aka 'Windows DNS Server Remote Code Execution Vulnerability'. | 10.0 |
| 2020-07-14 | CVE-2020-1043 | Improper Input Validation vulnerability in Microsoft products A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability'. | 9.0 |