Vulnerabilities > Microsoft > High

DATE CVE VULNERABILITY TITLE RISK
2017-06-15 CVE-2017-8511 Unspecified vulnerability in Microsoft products
A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability".
local
low complexity
microsoft
7.8
2017-06-15 CVE-2017-8510 Unspecified vulnerability in Microsoft Excel, Office and Word
A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability".
network
low complexity
microsoft
8.8
2017-06-15 CVE-2017-8509 Unspecified vulnerability in Microsoft products
A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability".
network
low complexity
microsoft
8.8
2017-06-15 CVE-2017-8507 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Microsoft Outlook
A remote code execution vulnerability exists in the way Microsoft Office software parses specially crafted email messages, aka "Microsoft Office Memory Corruption Vulnerability".
local
low complexity
microsoft CWE-119
7.8
2017-06-15 CVE-2017-8506 Unspecified vulnerability in Microsoft Outlook 2010/2013/2016
A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability".
local
low complexity
microsoft
7.8
2017-06-15 CVE-2017-8499 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Microsoft Edge
Microsoft Edge in Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user when the Edge JavaScript scripting engine fails to handle objects in memory, aka "Scripting Engine Memory Corruption Vulnerability".
network
high complexity
microsoft CWE-119
7.5
2017-06-15 CVE-2017-8497 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Microsoft Edge
Microsoft Edge in Windows 10 1607 and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability".
network
high complexity
microsoft CWE-119
7.5
2017-06-15 CVE-2017-8496 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Microsoft Edge
Microsoft Edge in Windows 10 1607 and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability".
network
high complexity
microsoft CWE-119
7.5
2017-06-15 CVE-2017-8494 Improper Preservation of Permissions vulnerability in Microsoft Windows 10 and Windows Server 2016
Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow a locally-authenticated attacker to run a specially crafted application on a targeted system when Windows Secure Kernel Mode fails to properly handle objects in memory, aka "Windows Elevation of Privilege Vulnerability".
local
low complexity
microsoft CWE-281
7.3
2017-06-15 CVE-2017-8468 Improper Preservation of Permissions vulnerability in Microsoft products
Microsoft Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to run processes in an elevated context when the Windows kernel improperly handles objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This CVE ID is unique from CVE-2017-8465.
local
low complexity
microsoft CWE-281
7.8