Vulnerabilities > Microsoft > Windows 10 > 1803
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-08-17 | CVE-2020-1470 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists when the Windows Work Folders Service improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. | 7.8 |
2020-08-17 | CVE-2020-1417 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. | 5.5 |
2020-08-17 | CVE-2020-1383 | Unspecified vulnerability in Microsoft products An information disclosure vulnerability exists in RPC if the server has Routing and Remote Access enabled. | 5.5 |
2020-08-17 | CVE-2020-1379 | Out-of-bounds Write vulnerability in Microsoft products A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. | 5.5 |
2020-08-17 | CVE-2020-1378 | Out-of-bounds Write vulnerability in Microsoft products An elevation of privilege vulnerability exists when the Windows Kernel API improperly handles registry objects in memory. | 7.5 |
2020-08-17 | CVE-2020-1377 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists when the Windows Kernel API improperly handles registry objects in memory. | 7.8 |
2020-08-17 | CVE-2020-1339 | Unspecified vulnerability in Microsoft products A remote code execution vulnerability exists when Windows Media Audio Codec improperly handles objects. | 7.8 |
2020-08-17 | CVE-2020-1337 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Microsoft products An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system. | 7.8 |
2020-07-29 | CVE-2020-15707 | Integer Overflow or Wraparound vulnerability in multiple products Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. | 4.4 |
2020-07-29 | CVE-2020-15706 | Use After Free vulnerability in multiple products GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. | 6.4 |