|
211071
|
8.8 |
HIGH
Network
|
microsoft
|
365_apps
|
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'.
|
NVD-CWE-noinfo
|
CVE-2020-1240
|
2024-11-21 14:10 |
2020-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211072
|
7.8 |
HIGH
Local
|
microsoft
|
windows_10
windows_server_2019
windows_server_2016
|
An elevation of privilege vulnerability exists when the Windows AppX Deployment Extensions improperly performs privilege management, resulting in access to system files.To exploit this vulnerability,…
|
CWE-269
Improper Privilege Management
|
CVE-2020-1431
|
2024-11-21 14:10 |
2020-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211073
|
6.5 |
MEDIUM
Network
|
microsoft
|
windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019
|
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'.
|
NVD-CWE-noinfo
|
CVE-2020-1348
|
2024-11-21 14:10 |
2020-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211074
|
5.9 |
MEDIUM
Network
|
microsoft
|
visual_studio_live_share
|
An information disclosure vulnerability exists in Visual Studio Code Live Share Extension when it exposes tokens in plain text, aka 'Visual Studio Code Live Share Information Disclosure Vulnerability…
|
CWE-319
Cleartext Transmission of Sensitive Information
|
CVE-2020-1343
|
2024-11-21 14:10 |
2020-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211075
|
5.4 |
MEDIUM
Network
|
microsoft
|
nugetgallery
|
A spoofing vulnerability exists when the NuGetGallery does not properly sanitize input on package metadata values, aka 'NuGetGallery Spoofing Vulnerability'.
|
CWE-79
Cross-site Scripting
|
CVE-2020-1340
|
2024-11-21 14:10 |
2020-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211076
|
7.8 |
HIGH
Local
|
microsoft
|
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_rt_8.1
windows_server_2019
|
An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CV…
|
NVD-CWE-noinfo
|
CVE-2020-1334
|
2024-11-21 14:10 |
2020-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211077
|
5.4 |
MEDIUM
Network
|
microsoft
|
system_center_operations_manager
|
A spoofing vulnerability exists when System Center Operations Manager (SCOM) does not properly sanitize a specially crafted web request to an affected SCOM instance, aka 'System Center Operations Man…
|
CWE-290
Authentication Bypass by Spoofing
|
CVE-2020-1331
|
2024-11-21 14:10 |
2020-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211078
|
6.5 |
MEDIUM
Network
|
microsoft
|
bing
|
A spoofing vulnerability exists when Microsoft Bing Search for Android improperly handles specific HTML content, aka 'Microsoft Bing Search Spoofing Vulnerability'.
|
CWE-290
Authentication Bypass by Spoofing
|
CVE-2020-1329
|
2024-11-21 14:10 |
2020-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211079
|
6.1 |
MEDIUM
Network
|
microsoft
|
azure_devops_server
|
A spoofing vulnerability exists in Microsoft Azure DevOps Server when it fails to properly handle web requests, aka 'Azure DevOps Server HTML Injection Vulnerability'.
|
CWE-79
Cross-site Scripting
|
CVE-2020-1327
|
2024-11-21 14:10 |
2020-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211080
|
7.8 |
HIGH
Local
|
microsoft
|
windows_10
windows_server_2016
windows_server_2019
|
An elevation of privilege (user to user) vulnerability exists in Windows Security Health Service when handling certain objects in memory.To exploit the vulnerability, an attacker would first have to …
|
NVD-CWE-noinfo
|
CVE-2020-1324
|
2024-11-21 14:10 |
2020-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
