Total
471 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2024-35260 | 2024-06-27 | 8.0 High | ||
Microsoft Dataverse Remote Code Execution Vulnerability | ||||
CVE-2024-30100 | 1 Microsoft | 1 Sharepoint Server | 2024-06-27 | 7.8 High |
Microsoft SharePoint Server Remote Code Execution Vulnerability | ||||
CVE-2024-20754 | 2024-06-19 | 7.5 High | ||
Lightroom Desktop versions 7.1.2 and earlier are affected by an Untrusted Search Path vulnerability that could result in arbitrary code execution in the context of the current user. If the application uses a search path to locate critical resources such as programs, then an attacker could modify that search path to point to a malicious program, which the targeted application would then execute. Exploitation of this issue requires user interaction in that a victim must open a malicious file. | ||||
CVE-2021-28246 | 1 Broadcom | 1 Ehealth | 2024-06-18 | 7.8 High |
CA eHealth Performance Manager through 6.3.2.12 is affected by Privilege Escalation via a Dynamically Linked Shared Object Library. A regular user must create a malicious library in the writable RPATH, to be dynamically linked when the emtgtctl2 executable is run. The code in the library will be executed as the ehealth user. NOTE: This vulnerability only affects products that are no longer supported by the maintainer | ||||
CVE-2024-26198 | 2024-06-12 | 8.8 High | ||
Microsoft Exchange Server Remote Code Execution Vulnerability | ||||
CVE-2019-17449 | 1 Avira | 1 Software Updater | 2024-06-11 | 6.7 Medium |
Avira Software Updater before 2.0.6.21094 allows a DLL side-loading attack. NOTE: The vendor thinks that this vulnerability is invalid because exploiting it would require at least administrator privileges and would gain only SYSTEM privileges | ||||
CVE-2024-20693 | 2024-06-11 | 7.8 High | ||
Windows Kernel Elevation of Privilege Vulnerability | ||||
CVE-2024-21435 | 2024-06-11 | 8.8 High | ||
Windows OLE Remote Code Execution Vulnerability | ||||
CVE-2024-21325 | 1 Microsoft | 1 Printer Metadata Troubleshooter Tool | 2024-06-11 | 7.8 High |
Microsoft Printer Metadata Troubleshooter Tool Remote Code Execution Vulnerability | ||||
CVE-2023-36393 | 1 Microsoft | 13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more | 2024-06-10 | 7.8 High |
Windows User Interface Application Core Remote Code Execution Vulnerability | ||||
CVE-2024-28133 | 2024-06-06 | 7.8 High | ||
A local low privileged attacker can use an untrusted search path in a CHARX system utility to gain root privileges. | ||||
CVE-2022-22047 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-05-29 | 7.8 High |
Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability | ||||
CVE-2023-35343 | 1 Microsoft | 7 Windows 10 1809, Windows 10 21h2, Windows 10 22h2 and 4 more | 2024-05-29 | 7.8 High |
Windows Geolocation Service Remote Code Execution Vulnerability | ||||
CVE-2023-21764 | 1 Microsoft | 1 Exchange Server | 2024-05-29 | 7.8 High |
Microsoft Exchange Server Elevation of Privilege Vulnerability | ||||
CVE-2023-21763 | 1 Microsoft | 1 Exchange Server | 2024-05-29 | 7.8 High |
Microsoft Exchange Server Elevation of Privilege Vulnerability | ||||
CVE-2023-41766 | 1 Microsoft | 12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more | 2024-05-29 | 7.8 High |
Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability | ||||
CVE-2023-36898 | 1 Microsoft | 2 Windows 11 21h2, Windows 11 22h2 | 2024-05-29 | 7.8 High |
Tablet Windows User Interface Application Core Remote Code Execution Vulnerability | ||||
CVE-2023-36780 | 1 Microsoft | 1 Skype For Business Server | 2024-05-29 | 7.2 High |
Skype for Business Remote Code Execution Vulnerability | ||||
CVE-2023-36778 | 1 Microsoft | 1 Exchange Server | 2024-05-29 | 8.0 High |
Microsoft Exchange Server Remote Code Execution Vulnerability | ||||
CVE-2023-36422 | 1 Microsoft | 1 Windows Defender | 2024-05-29 | 7.8 High |
Microsoft Windows Defender Elevation of Privilege Vulnerability |