Vulnerabilities > Microsoft > Windows 10 > 1709

DATE CVE VULNERABILITY TITLE RISK
2019-06-12 CVE-2019-1064 Link Following vulnerability in Microsoft products
An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'.
local
low complexity
microsoft CWE-59
7.8
2019-06-12 CVE-2019-1053 Link Following vulnerability in Microsoft products
An elevation of privilege vulnerability exists when the Windows Shell fails to validate folder shortcuts, aka 'Windows Shell Elevation of Privilege Vulnerability'.
local
low complexity
microsoft CWE-59
8.8
2019-06-12 CVE-2019-1050 Information Exposure vulnerability in Microsoft products
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'.
network
low complexity
microsoft CWE-200
6.5
2019-06-12 CVE-2019-1046 Information Exposure vulnerability in Microsoft products
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'.
local
low complexity
microsoft CWE-200
5.5
2019-06-12 CVE-2019-1045 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists in the way that the Windows Network File System (NFS) handles objects in memory, aka 'Windows Network File System Elevation of Privilege Vulnerability'.
local
low complexity
microsoft
7.8
2019-06-12 CVE-2019-1043 Unspecified vulnerability in Microsoft products
A remote code execution vulnerability exists in the way that comctl32.dll handles objects in memory, aka 'Comctl32 Remote Code Execution Vulnerability'.
network
low complexity
microsoft
6.8
2019-06-12 CVE-2019-1040 Unspecified vulnerability in Microsoft products
A tampering vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLM MIC (Message Integrity Check) protection, aka 'Windows NTLM Tampering Vulnerability'.
network
high complexity
microsoft
5.9
2019-06-12 CVE-2019-1039 Improper Initialization vulnerability in Microsoft products
An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application, aka 'Windows Kernel Information Disclosure Vulnerability'.
local
low complexity
microsoft CWE-665
5.5
2019-06-12 CVE-2019-1028 Unspecified vulnerability in Microsoft products
An elevation of privilege exists in Windows Audio Service, aka 'Windows Audio Service Elevation of Privilege Vulnerability'.
local
low complexity
microsoft
7.8
2019-06-12 CVE-2019-1027 Unspecified vulnerability in Microsoft products
An elevation of privilege exists in Windows Audio Service, aka 'Windows Audio Service Elevation of Privilege Vulnerability'.
local
low complexity
microsoft
7.8