Vulnerabilities > Microsoft > Windows > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-03-14 | CVE-2017-6883 | Out-of-bounds Read vulnerability in Foxitsoftware Foxit Reader and Phantompdf The ConvertToPDF plugin in Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 on Windows, when the gflags app is enabled, allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted TIFF image. | 2.6 |
| 2017-02-08 | CVE-2016-5918 | Information Exposure vulnerability in IBM Tivoli Storage Manager FOR Space Management IBM Tivoli Storage Manager HSM for Windows displays the encrypted Tivoli Storage Manager password in application trace output if the password access option is prompt and the password is changed. | 1.9 |
| 2017-02-01 | CVE-2016-6110 | Credentials Management vulnerability in IBM products IBM Tivoli Storage Manager discloses unencrypted login credentials to Vmware vCenter that could be obtained by a local user. | 2.1 |
| 2017-02-01 | CVE-2016-8963 | Information Exposure vulnerability in IBM Bigfix Inventory and License Metric Tool IBM BigFix Inventory v9 stores potentially sensitive information in log files that could be read by a local user. | 2.1 |
| 2017-02-01 | CVE-2016-8967 | Credentials Management vulnerability in IBM Bigfix Inventory and License Metric Tool IBM BigFix Inventory v9 9.2 stores user credentials in plain in clear text which can be read by a local user. | 2.1 |
| 2017-02-01 | CVE-2016-8981 | Information Exposure vulnerability in IBM Bigfix Inventory and License Metric Tool IBM BigFix Inventory v9 allows web pages to be stored locally which can be read by another user on the system. | 2.1 |
| 2016-11-08 | CVE-2016-7386 | Information Exposure vulnerability in Nvidia GPU Driver For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape ID 0x70000D4 which may lead to leaking of kernel memory contents to user space through an uninitialized buffer. | 2.1 |
| 2016-07-08 | CVE-2016-0287 | Information Exposure vulnerability in IBM I Access 7.1 IBM i Access 7.1 on Windows allows local users to discover registry passwords via unspecified vectors. | 2.1 |
| 2016-06-09 | CVE-2016-2150 | Improper Access Control vulnerability in multiple products SPICE allows local guest OS users to read from or write to arbitrary host memory locations via crafted primary surface parameters, a similar issue to CVE-2015-5261. | 3.6 |
| 2016-05-05 | CVE-2016-4534 | Permissions, Privileges, and Access Controls vulnerability in multiple products The McAfee VirusScan Console (mcconsol.exe) in McAfee VirusScan Enterprise 8.8.0 before Hotfix 1123565 (8.8.0.1546) on Windows allows local administrators to bypass intended self-protection rules and unlock the console window by closing registry handles. | 3.0 |