Vulnerabilities > Microsoft > Windows RT 8 1 > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-08-14 CVE-2019-1187 XXE vulnerability in Microsoft products
A denial of service vulnerability exists when the XmlLite runtime (XmlLite.dll) improperly parses XML input.
local
low complexity
microsoft CWE-611
5.5
5.5
2019-08-14 CVE-2019-1172 Information Exposure vulnerability in Microsoft products
An information disclosure vulnerability exists in Azure Active Directory (AAD) Microsoft Account (MSA) during the login request session.
network
low complexity
microsoft CWE-200
4.3
4.3
2019-08-14 CVE-2019-1158 Information Exposure vulnerability in Microsoft products
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory.
local
low complexity
microsoft CWE-200
5.5
5.5
2019-08-14 CVE-2019-1153 Out-of-bounds Read vulnerability in Microsoft products
An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory.
local
low complexity
microsoft CWE-125
5.5
5.5
2019-08-14 CVE-2019-1148 Out-of-bounds Read vulnerability in Microsoft products
An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory.
local
low complexity
microsoft CWE-125
5.5
5.5
2019-08-14 CVE-2019-1143 Information Exposure vulnerability in Microsoft products
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory.
local
low complexity
microsoft CWE-200
5.5
5.5
2019-08-14 CVE-2019-1078 Information Exposure vulnerability in Microsoft products
An information disclosure vulnerability exists when the Windows Graphics component improperly handles objects in memory.
local
low complexity
microsoft CWE-200
5.5
5.5
2019-08-14 CVE-2019-0718 Improper Input Validation vulnerability in Microsoft products
A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system.
network
high complexity
microsoft CWE-20
5.8
5.8
2019-08-14 CVE-2019-0716 Unspecified vulnerability in Microsoft products
A denial of service vulnerability exists when Windows improperly handles objects in memory.
network
high complexity
microsoft
5.8
5.8
2019-07-15 CVE-2019-1108 Information Exposure vulnerability in Microsoft products
An information disclosure vulnerability exists when the Windows RDP client improperly discloses the contents of its memory, aka 'Remote Desktop Protocol Client Information Disclosure Vulnerability'.
network
low complexity
microsoft CWE-200
6.5
6.5