CISA Catalog
Data sourced from the official CISA Known Exploited Vulnerabilities Catalog. Federal agencies are required to remediate these vulnerabilities by the due date per BOD 22-01.
KEV Entries
1,619
Ransomware Use
327
Overdue
1,615
Vendors
266
Products
655
377 results · Page 10/16
Microsoft GDI Remote Code Execution Vulnerability
Microsoft · Graphics Device Interface (GDI)
A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory. An attacker who successfully exploited this vulnerability could take control of the affected system.
Required Action
Apply updates per vendor instructions.
Microsoft Windows Shell Remote Code Execution Vulnerability
Microsoft · Windows
A remote code execution vulnerability exists when the Windows Shell does not properly validate file paths.
Required Action
Apply updates per vendor instructions.
Microsoft Scripting Engine Memory Corruption Vulnerability
Microsoft · Internet Explorer Scripting Engine
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer.
Required Action
Apply updates per vendor instructions.
Microsoft Windows SMB Remote Code Execution Vulnerability
Microsoft · Windows
The SMBv1 server in Microsoft Windows allows remote attackers to perform remote code execution.
Required Action
Apply updates per vendor instructions.
Microsoft Windows Object Linking & Embedding (OLE) Automation Array Remote Code Execution Vulnerability
Microsoft · Windows
OleAut32.dll in OLE in Microsoft Windows allows remote attackers to remotely execute code via a crafted web site.
Required Action
Apply updates per vendor instructions.
Microsoft Kerberos Key Distribution Center (KDC) Privilege Escalation Vulnerability
Microsoft · Kerberos Key Distribution Center (KDC)
The Kerberos Key Distribution Center (KDC) in Microsoft allows remote authenticated domain users to obtain domain administrator privileges.
Required Action
Apply updates per vendor instructions.
Microsoft Windows Universal Plug and Play (UPnP) Service Privilege Escalation Vulnerability
Microsoft · Windows
A privilege escalation vulnerability exists when the Windows UPnP service improperly allows COM object creation.
Required Action
Apply updates per vendor instructions.
Microsoft Windows Privilege Escalation Vulnerability
Microsoft · Windows
A privilege escalation vulnerability exists when Windows improperly handles authentication requests. An attacker who successfully exploited this vulnerability could run processes in an elevated context.
Required Action
Apply updates per vendor instructions.
Microsoft Windows Error Reporting Manager Privilege Escalation Vulnerability
Microsoft · Windows
A privilege escalation vulnerability exists when Windows Error Reporting manager improperly handles hard links. An attacker who successfully exploited this vulnerability could overwrite a targeted file leading to an elevated status.
Required Action
Apply updates per vendor instructions.
Microsoft Windows AppX Deployment Server Privilege Escalation Vulnerability
Microsoft · Windows
A privilege escalation vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.
Required Action
Apply updates per vendor instructions.
Microsoft Win32k Privilege Escalation Vulnerability
Microsoft · Win32k
A privilege escalation vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory.
Required Action
Apply updates per vendor instructions.
Microsoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability
Microsoft · Windows
A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context.
Required Action
Apply updates per vendor instructions.
Microsoft Task Scheduler Privilege Escalation Vulnerability
Microsoft · Task Scheduler
A privilege escalation vulnerability exists in the way the Task Scheduler Service validates certain file operations.
Required Action
Apply updates per vendor instructions.
Microsoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability
Microsoft · Windows
A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context.
Required Action
Apply updates per vendor instructions.
Microsoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability
Microsoft · Windows
A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context.
Required Action
Apply updates per vendor instructions.
Microsoft Windows Privilege Escalation Vulnerability
Microsoft · Windows
A privilege escalation vulnerability exists when Windows improperly handles authentication requests. An attacker who successfully exploited this vulnerability could run processes in an elevated context.
Required Action
Apply updates per vendor instructions.
Microsoft Win32k Privilege Escalation Vulnerability
Microsoft · Win32k
A privilege escalation vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory.
Required Action
Apply updates per vendor instructions.
Microsoft Windows Transaction Manager Privilege Escalation Vulnerability
Microsoft · Windows
A privilege escalation vulnerability exists when the Windows Transaction Manager improperly handles objects in memory.
Required Action
Apply updates per vendor instructions.
Microsoft Windows Kernel Privilege Escalation Vulnerability
Microsoft · Windows
A privilege escalation vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode.
Required Action
Apply updates per vendor instructions.
Microsoft Win32k Memory Corruption Vulnerability
Microsoft · Win32k
The kernel-mode driver in Microsoft Windows OS and Server allows local users to gain privileges via a crafted application.
Required Action
Apply updates per vendor instructions.
Microsoft Windows Installer Privilege Escalation Vulnerability
Microsoft · Windows
Microsoft Windows Installer contains an unspecified vulnerability that allows for privilege escalation.
Required Action
Apply updates per vendor instructions.
Microsoft Excel Remote Code Execution Vulnerability
Microsoft · Excel
A remote code execution vulnerability exists in Microsoft Excel when the software fails to properly handle objects in memory.
Required Action
Apply updates per vendor instructions.
Microsoft Exchange Server Privilege Escalation Vulnerability
Microsoft · Exchange Server
A privilege escalation vulnerability exists in Microsoft Exchange Server. An attacker who successfully exploited this vulnerability could attempt to impersonate any other user of the Exchange server.
Required Action
Apply updates per vendor instructions.
Microsoft Malware Protection Engine Improper Restriction of Operations Vulnerability
Microsoft · Malware Protection Engine
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016, Microsoft Exchange Server 2013 and 2016, does not properly scan a specially crafted file leading to memory corruption. aka "Microsoft Malware Protection Engine Remote Code Execution Vulnerability".
Required Action
Apply updates per vendor instructions.
Microsoft Office Remote Code Execution Vulnerability
Microsoft · Office
A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user.
Required Action
Apply updates per vendor instructions.
