Vulnerabilities > Microsoft > Windows > Low

DATE CVE VULNERABILITY TITLE RISK
2020-03-16 CVE-2019-4619 Information Exposure Through an Error Message vulnerability in IBM MQ, MQ Appliance and Websphere MQ
IBM MQ and IBM MQ Appliance 7.1, 7.5, 8.0, 9.0 LTS, 9.1 LTS, and 9.1 CD could allow a local attacker to obtain sensitive information by inclusion of sensitive data within trace.
local
low complexity
ibm hp linux microsoft oracle CWE-209
2.1
2020-03-16 CVE-2019-4719 Unspecified vulnerability in IBM MQ, MQ Appliance and Websphere MQ
IBM MQ and IBM MQ Appliance 7.1, 7.5, 8.0, 9.0 LTS, 9.1 LTS, and 9.1 CD could allow a local attacker to obtain sensitive information by inclusion of sensitive data within runmqras data.
local
low complexity
ibm hp linux microsoft oracle
2.1
2019-08-06 CVE-2019-5687 Incorrect Default Permissions vulnerability in Nvidia GPU Driver
NVIDIA Windows GPU Display Driver (all versions) contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which an incorrect use of default permissions for an object exposes it to an unintended actor
local
low complexity
nvidia microsoft CWE-276
3.6
2019-06-06 CVE-2019-5522 Out-of-bounds Read vulnerability in VMWare Tools
VMware Tools for Windows update addresses an out of bounds read vulnerability in vm3dmp driver which is installed with vmtools in Windows guest machines.
local
low complexity
vmware microsoft CWE-125
3.6
2019-04-08 CVE-2018-1787 Incorrect Permission Assignment for Critical Resource vulnerability in IBM products
IBM Spectrum Protect 7.1 and 8.1 is affected by a password exposure vulnerability caused by insecure file permissions.
local
low complexity
ibm microsoft CWE-732
2.1
2019-04-02 CVE-2019-4093 Incorrect Permission Assignment for Critical Resource vulnerability in IBM Spectrum Protect 8.1.7
IBM Tivoli Storage Manager (IBM Spectrum Protect 8.1.7) could allow a user to restore files and directories using IBM Spectrum Prootect Client Web User Interface on Windows that they should not have access to due to incorrect file permissions.
local
low complexity
ibm microsoft CWE-732
3.6
2019-03-14 CVE-2018-12210 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Intel Graphics Driver
Multiple pointer dereferences in User Mode Driver in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5063) 21.20.x.5064 (aka 15.45.x.5064) and 24.20.100.6373 potentially enables an unprivileged user to cause a denial of service via local access.
local
low complexity
intel microsoft CWE-119
2.1
2019-03-14 CVE-2018-12224 Information Exposure vulnerability in Intel Graphics Driver
Buffer leakage in igdkm64.sys in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5063) 21.20.x.5064 (aka 15.45.x.5064) and 24.20.100.6373 may allow an authenticated user to potentially enable information disclosure via local access.
local
low complexity
intel microsoft CWE-200
2.1
2019-03-14 CVE-2019-0122 Double Free vulnerability in Intel Software Guard Extensions SDK
Double free in Intel(R) SGX SDK for Linux before version 2.2 and Intel(R) SGX SDK for Windows before version 2.1 may allow an authenticated user to potentially enable information disclosure or denial of service via local access.
local
low complexity
intel microsoft linux CWE-415
3.6
2018-11-27 CVE-2018-6266 Information Exposure vulnerability in Nvidia Geforce Experience
NVIDIA GeForce Experience contains a vulnerability in all versions prior to 3.16 on Windows where a local user may obtain third party integration parameters, which may lead to information disclosure.
local
low complexity
nvidia microsoft CWE-200
2.1