Vulnerabilities > Microsoft > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-05-16 CVE-2019-0942 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists in the Unified Write Filter (UWF) feature for Windows 10 when it improperly restricts access to the registry, aka 'Unified Write Filter Elevation of Privilege Vulnerability'.
local
low complexity
microsoft
5.5
2019-05-16 CVE-2019-0932 Unspecified vulnerability in Microsoft Skype 8.35
An information disclosure vulnerability exists in Skype for Android, aka 'Skype for Android Information Disclosure Vulnerability'.
network
high complexity
microsoft
5.9
2019-05-16 CVE-2019-0930 Unspecified vulnerability in Microsoft Internet Explorer 10/11/9
An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory, aka 'Internet Explorer Information Disclosure Vulnerability'.
network
low complexity
microsoft
6.5
2019-05-16 CVE-2019-0921 Unspecified vulnerability in Microsoft Internet Explorer 10/11/9
An spoofing vulnerability exists when Internet Explorer improperly handles URLs, aka 'Internet Explorer Spoofing Vulnerability'.
network
low complexity
microsoft
6.5
2019-05-16 CVE-2019-0886 Improper Input Validation vulnerability in Microsoft products
An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka 'Windows Hyper-V Information Disclosure Vulnerability'.
low complexity
microsoft CWE-20
6.8
2019-05-16 CVE-2019-0882 Unspecified vulnerability in Microsoft products
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'.
network
low complexity
microsoft
6.5
2019-05-16 CVE-2019-0872 Cross-site Scripting vulnerability in Microsoft Azure Devops Server and Team Foundation Server
A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'.
network
low complexity
microsoft CWE-79
5.4
2019-05-16 CVE-2019-0864 Unspecified vulnerability in Microsoft .Net Framework
A denial of service vulnerability exists when .NET Framework improperly handles objects in heap memory, aka '.NET Framework Denial of Service Vulnerability'.
local
low complexity
microsoft
5.5
2019-05-16 CVE-2019-0819 Unspecified vulnerability in Microsoft SQL Server 2017
An information disclosure vulnerability exists in Microsoft SQL Server Analysis Services when it improperly enforces metadata permissions, aka 'Microsoft SQL Server Analysis Services Information Disclosure Vulnerability'.
network
low complexity
microsoft
6.5
2019-05-16 CVE-2019-0758 Unspecified vulnerability in Microsoft products
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'.
network
low complexity
microsoft
6.5