Vulnerabilities > Microsoft > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-02-15 CVE-2018-0832 Memory Leak vulnerability in Microsoft products
The Windows kernel in Windows 8.1 and RT 8.1, Windows Server 2012 R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to how objects in memory are handled, aka "Windows Information Disclosure Vulnerability".
local
high complexity
microsoft CWE-401
4.7
2018-02-15 CVE-2018-0830 Information Exposure vulnerability in Microsoft products
The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to how objects in memory are handled, aka "Windows Information Disclosure Vulnerability".
local
high complexity
microsoft CWE-200
4.7
2018-02-15 CVE-2018-0829 Information Exposure vulnerability in Microsoft products
The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to how objects in memory are handled, aka "Windows Information Disclosure Vulnerability".
local
high complexity
microsoft CWE-200
4.7
2018-02-15 CVE-2018-0827 Unspecified vulnerability in Microsoft Windows 10 and Windows Server 2016
Windows Scripting Host (WSH) in Windows 10 versions 1703 and 1709 and Windows Server, version 1709 allows a Device Guard security feature bypass vulnerability due to the way objects are handled in memory, aka "Windows Security Feature Bypass Vulnerability".
local
low complexity
microsoft
5.3
2018-02-15 CVE-2018-0810 Improper Initialization vulnerability in Microsoft Windows 7, Windows Server 2008 and Windows Server 2012
The Windows kernel in Windows 7 SP1, Windows Server 2008 SP2 and R2, and Windows Server 2012 allows an information disclosure vulnerability due to the way memory is initialized, aka "Windows Kernel Information Disclosure Vulnerability".
local
high complexity
microsoft CWE-665
4.7
2018-02-15 CVE-2018-0771 Unspecified vulnerability in Microsoft Edge
Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows a security feature bypass, due to how Edge handles different-origin requests, aka "Microsoft Edge Security Feature Bypass".
network
low complexity
microsoft
4.3
2018-02-15 CVE-2018-0761 Information Exposure vulnerability in Microsoft Windows 7 and Windows Server 2008
The Microsoft Windows Embedded OpenType (EOT) font engine in Microsoft Windows 7 SP1 and Windows Server 2008 R2 allows information disclosure, due to how the Windows EOT font engine handles embedded fonts, aka "Windows EOT Font Engine Information Disclosure Vulnerability".
local
low complexity
microsoft CWE-200
5.5
2018-02-15 CVE-2018-0760 Information Exposure vulnerability in Microsoft Windows 7, Windows Server 2008 and Windows Server 2012
The Microsoft Windows Embedded OpenType (EOT) font engine in Microsoft Windows 7 SP1, Windows Server 2008 R2, and Windows Server 2012 allows information disclosure, due to how the Windows EOT font engine handles embedded fonts, aka "Windows EOT Font Engine Information Disclosure Vulnerability".
local
low complexity
microsoft CWE-200
5.5
2018-02-15 CVE-2018-0757 Unspecified vulnerability in Microsoft products
The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way objects are handled in memory, aka "Windows Kernel Information Disclosure Vulnerability".
local
high complexity
microsoft
4.7
2018-02-15 CVE-2018-0755 Information Exposure vulnerability in Microsoft Windows 7 and Windows Server 2008
The Microsoft Windows Embedded OpenType (EOT) font engine in Microsoft Windows 7 SP1 and Windows Server 2008 R2 allows information disclosure, due to how the Windows EOT font engine handles embedded fonts, aka "Windows EOT Font Engine Information Disclosure Vulnerability".
local
low complexity
microsoft CWE-200
5.5