Latest CVE Feed
-
6.5
MEDIUMCVE-2019-1016
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There... Read more
Affected Products : windows_7 windows_server_2008 windows_server windows windows_server_2008_r2 windows_server_2008_sp2- Published: Jun. 12, 2019
- Modified: May. 20, 2025
-
6.5
MEDIUMCVE-2019-1015
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There... Read more
- Published: Jun. 12, 2019
- Modified: May. 20, 2025
-
7.8
HIGHCVE-2019-1014
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then insta... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows_10_1607 +8 more products- Published: Jun. 12, 2019
- Modified: May. 20, 2025
-
6.5
MEDIUMCVE-2019-1013
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There... Read more
Affected Products : windows_7 windows_server_2008 windows_server windows windows_server_2008_r2 windows_server_2008_sp2- Published: Jun. 12, 2019
- Modified: May. 20, 2025
-
6.5
MEDIUMCVE-2019-1012
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows_10_1607 +8 more products- Published: Jun. 12, 2019
- Modified: May. 20, 2025
-
6.5
MEDIUMCVE-2019-1011
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There... Read more
Affected Products : windows_7 windows_server_2008 windows_server windows windows_server_2008_r2 windows_server_2008_sp2- Published: Jun. 12, 2019
- Modified: May. 20, 2025
-
6.5
MEDIUMCVE-2019-1010
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows_10_1607 +8 more products- Published: Jun. 12, 2019
- Modified: May. 20, 2025
-
6.5
MEDIUMCVE-2019-1009
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There... Read more
Affected Products : windows_7 windows_server_2008 windows_server windows windows_server_2008_r2 windows_server_2008_sp2- Published: Jun. 12, 2019
- Modified: May. 20, 2025
-
7.8
HIGHCVE-2019-1007
An elevation of privilege exists in Windows Audio Service. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges. To exploit the vulnerability, an attacker could run a specially crafted application that... Read more
- Published: Jun. 12, 2019
- Modified: May. 20, 2025
-
7.6
HIGHCVE-2019-1005
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current ... Read more
- Published: Jun. 12, 2019
- Modified: May. 20, 2025
-
7.6
HIGHCVE-2019-1003
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the co... Read more
- Published: Jun. 12, 2019
- Modified: May. 20, 2025
-
7.6
HIGHCVE-2019-1002
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the co... Read more
- Published: Jun. 12, 2019
- Modified: May. 20, 2025
-
7.8
HIGHCVE-2019-0998
An elevation of privilege vulnerability exists when the Storage Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges on the victim system. To exploit the vulnerability, an att... Read more
- Published: Jun. 12, 2019
- Modified: May. 20, 2025
-
6.5
MEDIUMCVE-2019-0996
A spoofing vulnerability exists in Azure DevOps Server when it improperly handles requests to authorize applications, resulting in a cross-site request forgery. An attacker who successfully exploited this vulnerability could bypass OAuth protections and r... Read more
Affected Products : azure_devops_server- Published: Jun. 12, 2019
- Modified: May. 20, 2025
-
7.6
HIGHCVE-2019-0993
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the co... Read more
- Published: Jun. 12, 2019
- Modified: May. 20, 2025
-
7.6
HIGHCVE-2019-0992
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the co... Read more
- Published: Jun. 12, 2019
- Modified: May. 20, 2025
-
7.6
HIGHCVE-2019-0991
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the co... Read more
- Published: Jun. 12, 2019
- Modified: May. 20, 2025
-
6.5
MEDIUMCVE-2019-0990
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the co... Read more
- Published: Jun. 12, 2019
- Modified: May. 20, 2025
-
7.6
HIGHCVE-2019-0989
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the co... Read more
- Published: Jun. 12, 2019
- Modified: May. 20, 2025
-
7.6
HIGHCVE-2019-0988
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current ... Read more
- Published: Jun. 12, 2019
- Modified: May. 20, 2025