Vulnerabilities > Microsoft > Windows 10 > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-09-11 CVE-2019-1251 Information Exposure vulnerability in Microsoft products
An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'.
local
low complexity
microsoft CWE-200
5.5
5.5
2019-09-11 CVE-2019-1245 Information Exposure vulnerability in Microsoft products
An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'.
network
low complexity
microsoft CWE-200
6.5
6.5
2019-09-11 CVE-2019-1244 Information Exposure vulnerability in Microsoft products
An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'.
network
low complexity
microsoft CWE-200
6.5
6.5
2019-09-11 CVE-2019-1219 Information Exposure vulnerability in Microsoft products
An information disclosure vulnerability exists when the Windows Transaction Manager improperly handles objects in memory, aka 'Windows Transaction Manager Information Disclosure Vulnerability'.
local
low complexity
microsoft CWE-200
5.5
5.5
2019-09-11 CVE-2019-1216 Information Exposure vulnerability in Microsoft products
An information disclosure vulnerability exists when DirectX improperly handles objects in memory, aka 'DirectX Information Disclosure Vulnerability'.
local
low complexity
microsoft CWE-200
5.5
5.5
2019-09-11 CVE-2019-0928 Improper Input Validation vulnerability in Microsoft Windows 10 and Windows Server 2016
A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Service Vulnerability'.
low complexity
microsoft CWE-20
6.2
6.2
2019-09-03 CVE-2019-1125 An information disclosure vulnerability exists when certain central processing units (CPU) speculatively access memory.
local
high complexity
microsoft redhat
5.6
5.6
2019-08-14 CVE-2019-1198 Unspecified vulnerability in Microsoft products
An elevation of privilege exists in SyncController.dll.
network
high complexity
microsoft
6.5
6.5
2019-08-14 CVE-2019-1187 XXE vulnerability in Microsoft products
A denial of service vulnerability exists when the XmlLite runtime (XmlLite.dll) improperly parses XML input.
local
low complexity
microsoft CWE-611
5.5
5.5
2019-08-14 CVE-2019-1184 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists when Windows Core Shell COM Server Registrar improperly handles COM calls.
local
high complexity
microsoft
6.7
6.7