Vulnerabilities > Microsoft > Windows Server 2019
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-14 | CVE-2019-1171 | Information Exposure vulnerability in Microsoft products An information disclosure vulnerability exists in SymCrypt during the OAEP decryption stage. | 5.6 |
| 2019-08-14 | CVE-2019-1170 | Missing Authorization vulnerability in Microsoft products An elevation of privilege vulnerability exists when reparse points are created by sandboxed processes allowing sandbox escape. | 7.9 |
| 2019-08-14 | CVE-2019-1168 | Unspecified vulnerability in Microsoft products An elevation of privilege exists in the p2pimsvc service where an attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges. To exploit this vulnerability, an attacker would first have to log on to the system. | 7.8 |
| 2019-08-14 | CVE-2019-1164 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. | 7.8 |
| 2019-08-14 | CVE-2019-1163 | Improper Validation of Integrity Check Value vulnerability in Microsoft products A security feature bypass exists when Windows incorrectly validates CAB file signatures. | 5.5 |
| 2019-08-14 | CVE-2019-1162 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC). An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the local system. | 7.8 |
| 2019-08-14 | CVE-2019-1159 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. | 7.8 |
| 2019-08-14 | CVE-2019-1158 | Information Exposure vulnerability in Microsoft products An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. | 5.5 |
| 2019-08-14 | CVE-2019-1157 | Unspecified vulnerability in Microsoft products A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. | 7.8 |
| 2019-08-14 | CVE-2019-1156 | Unspecified vulnerability in Microsoft products A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. | 7.8 |