Vulnerabilities > Microsoft > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-15 | CVE-2021-43908 | Unspecified vulnerability in Microsoft Visual Studio Code Visual Studio Code Spoofing Vulnerability | 4.3 |
| 2021-11-19 | CVE-2021-33850 | Cross-site Scripting vulnerability in Microsoft Clarity 0.3 There is a Cross-Site Scripting vulnerability in Microsoft Clarity version 0.3. | 5.4 |
| 2021-09-03 | CVE-2021-30615 | Chromium: CVE-2021-30615 Cross-origin data leak in Navigation | 6.5 |
| 2021-09-03 | CVE-2021-30617 | Chromium: CVE-2021-30617 Policy bypass in Blink | 6.5 |
| 2021-09-03 | CVE-2021-30619 | Authentication Bypass by Spoofing vulnerability in multiple products Chromium: CVE-2021-30619 UI Spoofing in Autofill | 6.5 |
| 2021-09-03 | CVE-2021-30621 | Authentication Bypass by Spoofing vulnerability in multiple products Chromium: CVE-2021-30621 UI Spoofing in Autofill | 6.5 |
| 2021-05-11 | CVE-2021-31205 | Unspecified vulnerability in Microsoft Windows 10 and Windows Server 2016 Windows SMB Client Security Feature Bypass Vulnerability | 6.5 |
| 2021-02-19 | CVE-2021-3339 | Improper Authentication vulnerability in Microsoft Modernflow ModernFlow before 1.3.00.208 does not constrain web-page access to members of a security group, as demonstrated by the Search Screen and the Profile Screen. | 4.3 |
| 2021-02-09 | CVE-2021-21141 | Injection vulnerability in multiple products Insufficient policy enforcement in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass file extension policy via a crafted HTML page. | 6.5 |
| 2021-02-09 | CVE-2021-21140 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Uninitialized use in USB in Google Chrome prior to 88.0.4324.96 allowed a local attacker to potentially perform out of bounds memory access via via a USB device. | 6.8 |