Vulnerabilities > Microsoft > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-06-12 | CVE-2019-1019 | Information Exposure vulnerability in Microsoft products A security feature bypass vulnerability exists where a NETLOGON message is able to obtain the session key and sign messages. To exploit this vulnerability, an attacker could send a specially crafted authentication request. | 8.5 |
| 2019-06-12 | CVE-2019-1018 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory. | 7.0 |
| 2019-06-12 | CVE-2019-1017 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. | 7.0 |
| 2019-06-12 | CVE-2019-1014 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. | 7.0 |
| 2019-06-12 | CVE-2019-1007 | Improper Privilege Management vulnerability in Microsoft products An elevation of privilege exists in Windows Audio Service. | 7.8 |
| 2019-06-12 | CVE-2019-1005 | Out-of-bounds Write vulnerability in Microsoft Internet Explorer 10/11/9 A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. | 7.5 |
| 2019-06-12 | CVE-2019-0998 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists when the Storage Service improperly handles file operations. | 7.8 |
| 2019-06-12 | CVE-2019-0988 | Type Confusion vulnerability in Microsoft Internet Explorer 10/11 A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. | 7.5 |
| 2019-06-12 | CVE-2019-0985 | Out-of-bounds Write vulnerability in Microsoft Windows 7 and Windows Server 2008 A remote code execution vulnerability exists when the Microsoft Speech API (SAPI) improperly handles text-to-speech (TTS) input. | 7.8 |
| 2019-06-12 | CVE-2019-0984 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory. | 7.0 |