Vulnerabilities > Microsoft > Windows RT 8 1 > High

DATE CVE VULNERABILITY TITLE RISK
2020-08-17 CVE-2020-1516 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists when the Windows Work Folders Service improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system.
local
low complexity
microsoft
7.8
2020-08-17 CVE-2020-1515 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists when the Windows Telephony Server improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system.
local
low complexity
microsoft
7.8
2020-08-17 CVE-2020-1513 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists when the Windows CSC Service improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system.
local
low complexity
microsoft
7.8
2020-08-17 CVE-2020-1509 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists in the Local Security Authority Subsystem Service (LSASS) when an authenticated attacker sends a specially crafted authentication request.
local
low complexity
microsoft
7.8
2020-08-17 CVE-2020-1492 Out-of-bounds Write vulnerability in Microsoft products
A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory.
local
low complexity
microsoft CWE-787
7.8
2020-08-17 CVE-2020-1489 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists when the Windows CSC Service improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system.
local
low complexity
microsoft
7.8
2020-08-17 CVE-2020-1488 Improper Privilege Management vulnerability in Microsoft products
An elevation of privilege vulnerability exists when the Windows AppX Deployment Extensions improperly performs privilege management, resulting in access to system files. To exploit this vulnerability, an authenticated attacker would need to run a specially crafted application to elevate privileges. The security update addresses the vulnerability by correcting how AppX Deployment Extensions manages privileges.
local
high complexity
microsoft CWE-269
7.0
2020-08-17 CVE-2020-1487 Unspecified vulnerability in Microsoft products
An information disclosure vulnerability exists when Media Foundation improperly handles objects in memory.
local
low complexity
microsoft
7.8
2020-08-17 CVE-2020-1486 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory.
local
low complexity
microsoft
7.8
2020-08-17 CVE-2020-1484 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists when the Windows Work Folders Service improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system.
local
low complexity
microsoft
7.8