Vulnerabilities > Microsoft > Windows RT 8 1 > High

DATE CVE VULNERABILITY TITLE RISK
2020-08-17 CVE-2020-1478 Out-of-bounds Write vulnerability in Microsoft products
A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory.
local
low complexity
microsoft CWE-787
7.8
2020-08-17 CVE-2020-1477 Out-of-bounds Write vulnerability in Microsoft products
A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory.
local
high complexity
microsoft CWE-787
7.0
2020-08-17 CVE-2020-1475 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists in the way that the srmsvc.dll handles objects in memory.
local
low complexity
microsoft
7.8
2020-08-17 CVE-2020-1474 Unspecified vulnerability in Microsoft products
An information disclosure vulnerability exists when the Windows Image Acquisition (WIA) Service improperly discloses contents of its memory.
local
low complexity
microsoft
7.8
2020-08-17 CVE-2020-1473 Unspecified vulnerability in Microsoft products
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory.
local
high complexity
microsoft
7.0
2020-08-17 CVE-2020-1470 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists when the Windows Work Folders Service improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system.
local
low complexity
microsoft
7.8
2020-08-17 CVE-2020-1464 Improper Verification of Cryptographic Signature vulnerability in Microsoft products
A spoofing vulnerability exists when Windows incorrectly validates file signatures.
local
low complexity
microsoft CWE-347
7.8
2020-08-17 CVE-2020-1378 Out-of-bounds Write vulnerability in Microsoft products
An elevation of privilege vulnerability exists when the Windows Kernel API improperly handles registry objects in memory.
network
high complexity
microsoft CWE-787
7.5
2020-08-17 CVE-2020-1377 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists when the Windows Kernel API improperly handles registry objects in memory.
local
low complexity
microsoft
7.8
2020-08-17 CVE-2020-1337 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Microsoft products
An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system.
local
low complexity
microsoft CWE-367
7.8