Vulnerabilities > Microsoft > Windows Server 2016 > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-08-14 CVE-2019-1172 Information Exposure vulnerability in Microsoft products
An information disclosure vulnerability exists in Azure Active Directory (AAD) Microsoft Account (MSA) during the login request session.
network
low complexity
microsoft CWE-200
4.3
4.3
2019-08-14 CVE-2019-1171 Information Exposure vulnerability in Microsoft products
An information disclosure vulnerability exists in SymCrypt during the OAEP decryption stage.
local
high complexity
microsoft CWE-200
5.6
5.6
2019-08-14 CVE-2019-1163 Improper Validation of Integrity Check Value vulnerability in Microsoft products
A security feature bypass exists when Windows incorrectly validates CAB file signatures.
local
low complexity
microsoft CWE-354
5.5
5.5
2019-08-14 CVE-2019-1158 Information Exposure vulnerability in Microsoft products
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory.
local
low complexity
microsoft CWE-200
5.5
5.5
2019-08-14 CVE-2019-1153 Out-of-bounds Read vulnerability in Microsoft products
An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory.
local
low complexity
microsoft CWE-125
5.5
5.5
2019-08-14 CVE-2019-1148 Out-of-bounds Read vulnerability in Microsoft products
An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory.
local
low complexity
microsoft CWE-125
5.5
5.5
2019-08-14 CVE-2019-1143 Information Exposure vulnerability in Microsoft products
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory.
local
low complexity
microsoft CWE-200
5.5
5.5
2019-08-14 CVE-2019-1078 Information Exposure vulnerability in Microsoft products
An information disclosure vulnerability exists when the Windows Graphics component improperly handles objects in memory.
local
low complexity
microsoft CWE-200
5.5
5.5
2019-08-14 CVE-2019-0723 Improper Input Validation vulnerability in Microsoft products
A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system.
network
high complexity
microsoft CWE-20
5.8
5.8
2019-08-14 CVE-2019-0718 Improper Input Validation vulnerability in Microsoft products
A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system.
network
high complexity
microsoft CWE-20
5.8
5.8