Vulnerabilities > Microsoft > Windows 10 > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-06-15 CVE-2017-8471 Information Exposure vulnerability in Microsoft products
Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an authenticated attacker to run a specially crafted application when the Windows kernel improperly initializes objects in memory, aka "Win32k Information Disclosure Vulnerability".
local
low complexity
microsoft CWE-200
5.0
2017-06-15 CVE-2017-8470 Information Exposure vulnerability in Microsoft products
Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an authenticated attacker to run a specially crafted application when the Windows kernel improperly initializes objects in memory, aka "Win32k Information Disclosure Vulnerability".
local
low complexity
microsoft CWE-200
5.0
2017-06-15 CVE-2017-8462 Information Exposure vulnerability in Microsoft products
The kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to obtain information via a specially crafted application.
local
low complexity
microsoft CWE-200
5.0
2017-06-15 CVE-2017-0300 Information Exposure vulnerability in Microsoft products
The kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to obtain information via a specially crafted application.
local
low complexity
microsoft CWE-200
5.0
2017-06-15 CVE-2017-0299 Information Exposure vulnerability in Microsoft products
The kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to obtain information via a specially crafted application.
local
low complexity
microsoft CWE-200
5.0
2017-06-15 CVE-2017-0297 Information Exposure vulnerability in Microsoft products
The kernel in Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to obtain information via a specially crafted application.
local
low complexity
microsoft CWE-200
5.0
2017-06-15 CVE-2017-0295 Unspecified vulnerability in Microsoft Windows 10 and Windows Server 2016
Microsoft Windows 10 1607 and 1703, and Windows Server 2016 allow an authenticated attacker to modify the C:\Users\DEFAULT folder structure, aka "Windows Default Folder Tampering Vulnerability".
local
low complexity
microsoft
5.5
2017-06-15 CVE-2017-0289 Information Exposure vulnerability in Microsoft products
Graphics in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows improper disclosure of memory contents, aka "Windows Graphics Information Disclosure Vulnerability".
local
low complexity
microsoft CWE-200
5.0
2017-06-15 CVE-2017-0288 Information Exposure vulnerability in Microsoft products
Graphics in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows improper disclosure of memory contents, aka "Windows Graphics Information Disclosure Vulnerability".
local
low complexity
microsoft CWE-200
5.0
2017-06-15 CVE-2017-0287 Information Exposure vulnerability in Microsoft products
Graphics in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows improper disclosure of memory contents, aka "Graphics Uniscribe Information Disclosure Vulnerability".
local
low complexity
microsoft CWE-200
5.0