Vulnerabilities > Microsoft > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-15 | CVE-2020-1022 | Unspecified vulnerability in Microsoft Dynamics 365 Business Central and Dynamics NAV A remote code execution vulnerability exists in Microsoft Dynamics Business Central, aka 'Dynamics Business Central Remote Code Execution Vulnerability'. | 8.0 |
| 2020-04-15 | CVE-2020-1020 | Out-of-bounds Write vulnerability in Microsoft products A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely, aka 'Adobe Font Manager Library Remote Code Execution Vulnerability'. | 8.8 |
| 2020-04-15 | CVE-2020-1019 | Unspecified vulnerability in Microsoft RMS Sharing An elevation of privilege vulnerability exists in RMS Sharing App for Mac in the way it allows an attacker to load unsigned binaries, aka 'Microsoft RMS Sharing App for Mac Elevation of Privilege Vulnerability'. | 7.8 |
| 2020-04-15 | CVE-2020-1018 | Information Exposure vulnerability in Microsoft Dynamics 365 Business Central and Dynamics NAV An information disclosure vulnerability exists when Microsoft Dynamics Business Central/NAV on-premise does not properly hide the value of a masked field when showing the records as a chart page.The attacker who successfully exploited the vulnerability could see the information that are in a masked field.The security update addresses the vulnerability by updating the rendering engine the Windows client to properly detect masked fields and render the content as masked., aka 'Microsoft Dynamics Business Central/NAV Information Disclosure'. | 7.5 |
| 2020-04-15 | CVE-2020-1017 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists in the way the Windows Push Notification Service handles objects in memory, aka 'Windows Push Notification Service Elevation of Privilege Vulnerability'. | 7.8 |
| 2020-04-15 | CVE-2020-1015 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists in the way that the User-Mode Power Service (UMPS) handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. | 7.8 |
| 2020-04-15 | CVE-2020-1014 | Improper Privilege Management vulnerability in Microsoft products An elevation of privilege vulnerability exists in the Microsoft Windows Update Client when it does not properly handle privileges, aka 'Microsoft Windows Update Client Elevation of Privilege Vulnerability'. | 7.8 |
| 2020-04-15 | CVE-2020-1011 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists when the Windows System Assessment Tool improperly handles file operations, aka 'Windows Elevation of Privilege Vulnerability'. | 7.8 |
| 2020-04-15 | CVE-2020-1009 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists in the way that the Microsoft Store Install Service handles file operations in protected locations, aka 'Windows Elevation of Privilege Vulnerability'. | 7.8 |
| 2020-04-15 | CVE-2020-1008 | Unspecified vulnerability in Microsoft products A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. | 7.8 |