Vulnerabilities > Microsoft > High

DATE CVE VULNERABILITY TITLE RISK
2022-06-14 CVE-2022-32230 NULL Pointer Dereference vulnerability in Microsoft Windows 10, Windows 11 and Windows Server 2019
Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set.
network
low complexity
microsoft CWE-476
7.5
2022-05-10 CVE-2022-26927 Unspecified vulnerability in Microsoft products
Windows Graphics Component Remote Code Execution Vulnerability
network
low complexity
microsoft
8.8
2022-05-10 CVE-2022-29105 Unspecified vulnerability in Microsoft products
Microsoft Windows Media Foundation Remote Code Execution Vulnerability
local
low complexity
microsoft
7.8
2022-05-10 CVE-2022-29148 Unspecified vulnerability in Microsoft Visual Studio 2017
Visual Studio Remote Code Execution Vulnerability
local
low complexity
microsoft
7.8
2022-04-12 CVE-2022-24767 Uncontrolled Search Path Element vulnerability in multiple products
GitHub: Git for Windows' uninstaller vulnerable to DLL hijacking when run under the SYSTEM user account.
7.8
2022-03-10 CVE-2022-0280 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Microsoft Windows
A race condition vulnerability exists in the QuickClean feature of McAfee Total Protection for Windows prior to 16.0.43 that allows a local user to gain privilege elevation and perform an arbitrary file delete.
local
high complexity
microsoft CWE-367
7.0
2022-01-20 CVE-2020-23315 Unspecified vulnerability in Microsoft Chakracore 1.12.0.0
There is an ASSERTION (pFuncBody->GetYieldRegister() == oldYieldRegister) failed in Js::DebugContext::RundownSourcesAndReparse in ChakraCore version 1.12.0.0-beta.
network
low complexity
microsoft
7.5
2022-01-11 CVE-2022-21833 Unspecified vulnerability in Microsoft products
Virtual Machine IDE Drive Elevation of Privilege Vulnerability
local
low complexity
microsoft
7.8
2022-01-11 CVE-2022-21834 Unspecified vulnerability in Microsoft products
Windows User-mode Driver Framework Reflector Driver Elevation of Privilege Vulnerability
local
low complexity
microsoft
7.8
2022-01-11 CVE-2022-21837 Unspecified vulnerability in Microsoft Sharepoint Foundation and Sharepoint Server
Microsoft SharePoint Server Remote Code Execution Vulnerability
network
low complexity
microsoft
8.8