High

DATE	CVE	VULNERABILITY TITLE	RISK
2019-08-14	CVE-2019-1201	Unspecified vulnerability in Microsoft products A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. local low complexity microsoft	7.8
2019-08-14	CVE-2019-1200	Unspecified vulnerability in Microsoft Office, Office 365 Proplus and Outlook A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory. local low complexity microsoft	7.8
2019-08-14	CVE-2019-1199	Out-of-bounds Write vulnerability in Microsoft Office and Office 365 Proplus A remote code execution vulnerability exists in Microsoft Outlook when the software fails to properly handle objects in memory. local low complexity microsoft CWE-787	7.8
2019-08-14	CVE-2019-1185	Unspecified vulnerability in Microsoft Windows 10 and Windows Server 2016 An elevation of privilege vulnerability exists due to a stack corruption in Windows Subsystem for Linux. local low complexity microsoft	7.8
2019-08-14	CVE-2019-1183	Unspecified vulnerability in Microsoft products This information is being revised to indicate that this CVE (CVE-2019-1183) is fully mitigated by the security updates for the vulnerability discussed in CVE-2019-1194. network low complexity microsoft	8.8
2019-08-14	CVE-2019-1161	Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations. To exploit the vulnerability, an attacker would first have to log on to the system. local low complexity microsoft	7.1
2019-08-05	CVE-2019-3800	Information Exposure vulnerability in multiple products CF CLI version prior to v6.45.0 (bosh release version 1.16.0) writes the client id and secret to its config file when the user authenticates with --client-credentials flag. local low complexity pivotal apigee newrelic microsoft appdynamics bluemedora contrastsecurity cyberark datadoghq datastax dynatrace forgerock google ibm pagerduty riverbed signalsciences wavefront tibco solace snyk samba splunk sumologic synopsys yugabyte anynines CWE-200	7.8
2019-07-15	CVE-2019-1136	Unspecified vulnerability in Microsoft Exchange Server 2010/2013 An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'. network high complexity microsoft	8.1
2019-07-15	CVE-2019-1132	Unspecified vulnerability in Microsoft Windows 7 and Windows Server 2008 An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. local low complexity microsoft	7.8
2019-07-15	CVE-2019-1130	Link Following vulnerability in Microsoft products An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. local low complexity microsoft CWE-59	7.8