|
222411
|
8.8 |
HIGH
Network
|
microsoft
|
asp.net_core
|
An elevation of privilege vulnerability exists when a ASP.NET Core web application, created using vulnerable project templates, fails to properly sanitize web requests, aka 'ASP.NET Core Elevation Of…
|
CWE-20
Improper Input Validation
|
CVE-2019-1302
|
2024-11-21 13:36 |
2019-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222412
|
7.5 |
HIGH
Network
|
microsoft
|
powershell_core
.net_core
|
A denial of service vulnerability exists when .NET Core improperly handles web requests, aka '.NET Core Denial of Service Vulnerability'.
|
NVD-CWE-noinfo
|
CVE-2019-1301
|
2024-11-21 13:36 |
2019-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222413
|
7.5 |
HIGH
Network
|
microsoft
|
edge
chakracore
|
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. Th…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-1300
|
2024-11-21 13:36 |
2019-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222414
|
6.5 |
MEDIUM
Network
|
microsoft
|
edge
|
An information disclosure vulnerability exists when Microsoft Edge based on Edge HTML improperly handles objects in memory, aka 'Microsoft Edge based on Edge HTML Information Disclosure Vulnerability…
|
CWE-665
Improper Initialization
|
CVE-2019-1299
|
2024-11-21 13:36 |
2019-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222415
|
7.5 |
HIGH
Network
|
microsoft
|
edge
chakracore
|
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. Th…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-1298
|
2024-11-21 13:36 |
2019-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222416
|
8.8 |
HIGH
Network
|
microsoft
|
excel
office
office_365_proplus
|
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'.
|
NVD-CWE-noinfo
|
CVE-2019-1297
|
2024-11-21 13:36 |
2019-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222417
|
8.8 |
HIGH
Network
|
microsoft
|
sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server
|
A remote code execution vulnerability exists in Microsoft SharePoint where APIs aren't properly protected from unsafe data input, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This …
|
CWE-20
Improper Input Validation
|
CVE-2019-1296
|
2024-11-21 13:36 |
2019-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222418
|
8.8 |
HIGH
Network
|
microsoft
|
sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server
|
A remote code execution vulnerability exists in Microsoft SharePoint where APIs aren't properly protected from unsafe data input, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This …
|
CWE-20
Improper Input Validation
|
CVE-2019-1295
|
2024-11-21 13:36 |
2019-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222419
|
4.6 |
MEDIUM
Physics
|
microsoft
|
windows_10
windows_server_2016
windows_server_2019
|
A security feature bypass exists when Windows Secure Boot improperly restricts access to debugging functionality, aka 'Windows Secure Boot Security Feature Bypass Vulnerability'.
|
NVD-CWE-noinfo
|
CVE-2019-1294
|
2024-11-21 13:36 |
2019-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222420
|
5.5 |
MEDIUM
Local
|
microsoft
|
windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_server_2019
windows_7
windows_rt_8.1
|
An information disclosure vulnerability exists in Windows when the Windows SMB Client kernel-mode driver fails to properly handle objects in memory, aka 'Windows SMB Client Driver Information Disclos…
|
CWE-200
Information Exposure
|
CVE-2019-1293
|
2024-11-21 13:36 |
2019-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
