Latest CVE Feed
-
6.5
MEDIUMCVE-2016-3271
The VBScript engine in Microsoft Edge allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Scripting Engine Information Disclosure Vulnerability."... Read more
Affected Products : edge- EPSS Score: %48.18
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
9.3
HIGHCVE-2016-3269
The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability tha... Read more
Affected Products : edge- EPSS Score: %25.59
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
9.3
HIGHCVE-2016-3265
The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability tha... Read more
Affected Products : edge- EPSS Score: %25.11
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
7.6
HIGHCVE-2016-3264
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability."... Read more
- EPSS Score: %20.46
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
5.3
MEDIUMCVE-2016-3261
Microsoft Internet Explorer 11 allows remote attackers to obtain sensitive information via a crafted web site, aka "Internet Explorer Information Disclosure Vulnerability."... Read more
Affected Products : internet_explorer- EPSS Score: %20.20
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
9.3
HIGHCVE-2016-3260
The Microsoft (1) JScript 9, (2) VBScript, and (3) Chakra JavaScript engines, as used in Microsoft Internet Explorer 11, Microsoft Edge, and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) ... Read more
- EPSS Score: %22.64
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
9.3
HIGHCVE-2016-3259
The Microsoft (1) JScript 9, (2) VBScript, and (3) Chakra JavaScript engines, as used in Microsoft Internet Explorer 9 through 11, Microsoft Edge, and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory co... Read more
- EPSS Score: %27.13
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
4.7
MEDIUMCVE-2016-3258
Race condition in the kernel in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to bypass the Low Integrity protection mechanism and write to files by leveraging unspecified object-ma... Read more
- EPSS Score: %0.09
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
5.0
MEDIUMCVE-2016-3256
Microsoft Windows 10 Gold and 1511 allows local users to bypass the Secure Kernel Mode protection mechanism and obtain sensitive information via a crafted application, aka "Windows Secure Kernel Mode Information Disclosure Vulnerability."... Read more
Affected Products : windows_10- EPSS Score: %1.30
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
7.5
HIGHCVE-2016-3255
Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows remote attackers to read arbitrary files via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) iss... Read more
Affected Products : .net_framework- EPSS Score: %38.59
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
7.8
HIGHCVE-2016-3254
The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allow local users to gain privileges via a crafted applic... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_vista- EPSS Score: %0.47
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
7.3
HIGHCVE-2016-3252
The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allow local users to gain privileges via a crafted applic... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_vista- EPSS Score: %2.65
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
2.8
LOWCVE-2016-3251
The GDI component in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to obtain sensiti... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_vista- EPSS Score: %10.54
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
7.3
HIGHCVE-2016-3250
The kernel-mode drivers in Microsoft Windows Server 2012 and Windows 10 Gold and 1511 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability."... Read more
- EPSS Score: %1.16
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
7.3
HIGHCVE-2016-3249
The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allow local users to gain privileges via a crafted applic... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_vista- EPSS Score: %1.19
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
9.3
HIGHCVE-2016-3248
The Microsoft (1) JScript 9, (2) VBScript, and (3) Chakra JavaScript engines, as used in Microsoft Internet Explorer 9 through 11, Microsoft Edge, and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory co... Read more
- EPSS Score: %25.18
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
7.6
HIGHCVE-2016-3246
Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Edge Memory Corruption Vulnerability."... Read more
Affected Products : edge- EPSS Score: %18.28
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
6.5
MEDIUMCVE-2016-3245
Microsoft Internet Explorer 9 through 11 allows remote attackers to trick users into making TCP connections to a restricted port via a crafted web site, aka "Internet Explorer Security Feature Bypass Vulnerability."... Read more
Affected Products : internet_explorer- EPSS Score: %11.96
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
4.3
MEDIUMCVE-2016-3244
Microsoft Edge allows remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "Microsoft Edge Security Feature Bypass."... Read more
Affected Products : edge- EPSS Score: %20.01
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025
-
7.6
HIGHCVE-2016-3243
Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability."... Read more
Affected Products : internet_explorer- EPSS Score: %16.93
- Published: Jul. 13, 2016
- Modified: Apr. 12, 2025