Vulnerabilities > Microsoft > Windows 8 1 > High

DATE CVE VULNERABILITY TITLE RISK
2020-05-21 CVE-2020-1113 Improper Certificate Validation vulnerability in Microsoft products
A security feature bypass vulnerability exists in Microsoft Windows when the Task Scheduler service fails to properly verify client connections over RPC, aka 'Windows Task Scheduler Security Feature Bypass Vulnerability'.
network
high complexity
microsoft CWE-295
7.5
2020-05-21 CVE-2020-1081 Improper Input Validation vulnerability in Microsoft products
An elevation of privilege vulnerability exists when the Windows Printer Service improperly validates file paths while loading printer drivers, aka 'Windows Printer Service Elevation of Privilege Vulnerability'.
local
low complexity
microsoft CWE-20
7.8
2020-05-21 CVE-2020-1079 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists when the Windows fails to properly handle objects in memory, aka 'Microsoft Windows Elevation of Privilege Vulnerability'.
local
low complexity
microsoft
7.8
2020-05-21 CVE-2020-1078 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists in Windows Installer because of the way Windows Installer handles certain filesystem operations.To exploit the vulnerability, an attacker would require unprivileged execution on the victim system, aka 'Windows Installer Elevation of Privilege Vulnerability'.
local
low complexity
microsoft
7.8
2020-05-21 CVE-2020-1070 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system, aka 'Windows Print Spooler Elevation of Privilege Vulnerability'.
local
low complexity
microsoft
7.8
2020-05-21 CVE-2020-1067 Unspecified vulnerability in Microsoft products
A remote code execution vulnerability exists in the way that Windows handles objects in memory, aka 'Windows Remote Code Execution Vulnerability'.
network
low complexity
microsoft
8.8
2020-05-21 CVE-2020-1061 Out-of-bounds Write vulnerability in Microsoft products
A remote code execution vulnerability exists in the way that the Microsoft Script Runtime handles objects in memory, aka 'Microsoft Script Runtime Remote Code Execution Vulnerability'.
network
low complexity
microsoft CWE-787
8.8
2020-05-21 CVE-2020-1054 Out-of-bounds Write vulnerability in Microsoft products
An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'.
local
low complexity
microsoft CWE-787
7.8
2020-05-21 CVE-2020-1051 Unspecified vulnerability in Microsoft products
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'.
local
low complexity
microsoft
7.8
2020-05-21 CVE-2020-1048 Incorrect Resource Transfer Between Spheres vulnerability in Microsoft products
An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system, aka 'Windows Print Spooler Elevation of Privilege Vulnerability'.
local
low complexity
microsoft CWE-669
7.8