Skip to main content
CVE-2019-1225 HIGH PATCH This Week

An information disclosure vulnerability exists when the Windows RDP server improperly discloses the contents of its memory. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Microsoft Information Disclosure Windows 10 Windows Server 2016 Windows Server 2019
NVD
CVSS 3.1
7.5
EPSS
9.5%
CVE-2019-1224 HIGH PATCH This Week

An information disclosure vulnerability exists when the Windows RDP server improperly discloses the contents of its memory. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Microsoft Information Disclosure Windows 10 Windows Server 2016 Windows Server 2019
NVD
CVSS 3.1
7.5
EPSS
7.6%
CVE-2019-1223 HIGH PATCH This Week

A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Windows 10 Windows Server 2016 Windows Server 2019
NVD
CVSS 3.1
7.5
EPSS
5.2%
CVE-2019-1206 HIGH PATCH This Week

A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP failover server. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow Microsoft Memory Corruption Windows Server 2012 Windows Server 2016 +1
NVD
CVSS 3.1
7.5
EPSS
5.3%
CVE-2019-1194 HIGH PATCH This Week

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow Microsoft RCE Memory Corruption Internet Explorer
NVD
CVSS 3.1
7.5
EPSS
3.4%
CVE-2019-1188 HIGH PATCH This Week

A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required.

Microsoft RCE Windows 10 Windows Server 2016 Windows Server 2019
NVD
CVSS 3.1
7.5
EPSS
3.8%
CVE-2019-1133 HIGH PATCH This Week

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow Microsoft RCE Memory Corruption Internet Explorer
NVD
CVSS 3.1
7.5
EPSS
3.3%
CVE-2019-1057 HIGH PATCH This Week

A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required. This XML External Entity (XXE) vulnerability could allow attackers to read arbitrary files or perform SSRF through XML processing.

XXE Microsoft RCE Windows 10 Windows 7 +6
NVD
CVSS 3.1
7.5
EPSS
3.1%
CVE-2019-1211 HIGH PATCH This Week

An elevation of privilege vulnerability exists in Git for Visual Studio when it improperly parses configuration files. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity.

Information Disclosure Visual Studio 2017 Visual Studio 2019
NVD
CVSS 3.0
7.3
EPSS
1.7%
CVE-2019-1185 HIGH PATCH This Week

An elevation of privilege vulnerability exists due to a stack corruption in Windows Subsystem for Linux. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity.

Buffer Overflow Stack Overflow Microsoft Windows 10 Windows Server 2016
NVD
CVSS 3.1
7.3
EPSS
1.1%
CVE-2019-0349 HIGH This Week

SAP Kernel (ABAP Debugger), versions KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, KRNL64UC 7.21, 7.21EXT, 7.22,. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass SAP Advanced Business Application Programming Platform Kernel
NVD
CVSS 3.0
7.2
EPSS
1.2%
CVE-2019-1161 HIGH PATCH This Week

An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity.

Information Disclosure Windows Defender Forefront Endpoint Protection 2010 Security Essentials System Center Endpoint Protection
NVD
CVSS 3.1
7.1
EPSS
0.9%
CVE-2019-3639 HIGH This Week

Clickjack vulnerability in Adminstrator web console in McAfee Web Gateway (MWG) 7.8.2.x prior to 7.8.2.12 allows remote attackers to conduct clickjacking attacks via a crafted web page that contains. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Web Gateway
NVD
CVSS 3.0
7.1
EPSS
1.2%
CVE-2019-1186 HIGH PATCH This Week

An elevation of privilege vulnerability exists in the way that the wcmsvc.dll handles objects in memory. Rated high severity (CVSS 7.0).

Information Disclosure Windows 10 Windows Server 2016 Windows Server 2019
NVD
CVSS 3.1
7.0
EPSS
0.7%
CVE-2019-1180 HIGH PATCH This Week

An elevation of privilege vulnerability exists in the way that the wcmsvc.dll handles objects in memory. Rated high severity (CVSS 7.0).

Information Disclosure Windows 10 Windows 8 1 Windows Rt 8 1 Windows Server 2012 +2
NVD
CVSS 3.1
7.0
EPSS
0.8%
CVE-2019-1179 HIGH PATCH This Week

An elevation of privilege vulnerability exists in the way that the unistore.dll handles objects in memory. Rated high severity (CVSS 7.0).

Information Disclosure Windows 10 Windows Server 2016 Windows Server 2019
NVD
CVSS 3.1
7.0
EPSS
0.8%
CVE-2019-1178 HIGH PATCH This Week

An elevation of privilege vulnerability exists in the way that the ssdpsrv.dll handles objects in memory. Rated high severity (CVSS 7.0).

Information Disclosure Windows 10 Windows 7 Windows 8 1 Windows Rt 8 1 +4
NVD
CVSS 3.1
7.0
EPSS
0.8%
CVE-2019-1177 HIGH PATCH This Week

An elevation of privilege vulnerability exists in the way that the rpcss.dll handles objects in memory. Rated high severity (CVSS 7.0). This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Privilege Escalation Windows 10 Windows 7 Windows 8 1 Windows Rt 8 1 +4
NVD
CVSS 3.1
7.0
EPSS
0.7%
CVE-2019-1176 HIGH PATCH This Week

An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory. Rated high severity (CVSS 7.0).

RCE Windows 10 Windows Server 2016 Windows Server 2019
NVD
CVSS 3.1
7.0
EPSS
0.8%
CVE-2019-1175 HIGH PATCH This Week

An elevation of privilege vulnerability exists in the way that the psmsrv.dll handles objects in memory. Rated high severity (CVSS 7.0). This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Privilege Escalation Windows 10 Windows Server 2016 Windows Server 2019
NVD
CVSS 3.1
7.0
EPSS
0.7%
CVE-2019-1174 HIGH PATCH This Week

An elevation of privilege vulnerability exists in the way that the PsmServiceExtHost.dll handles objects in memory. Rated high severity (CVSS 7.0).

Information Disclosure Windows 10 Windows Server 2016 Windows Server 2019
NVD
CVSS 3.1
7.0
EPSS
0.7%
CVE-2019-1173 HIGH PATCH This Week

An elevation of privilege vulnerability exists in the way that the PsmServiceExtHost.dll handles objects in memory. Rated high severity (CVSS 7.0).

Information Disclosure Windows 10 Windows Server 2016 Windows Server 2019
NVD
CVSS 3.1
7.0
EPSS
0.7%
Prev Page 2 of 2

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy