|
215751
|
7.8 |
HIGH
Local
|
microsoft
|
windows_server_2008
windows_10
windows_server_2016
windows_7
windows_server_2019
|
<p>An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.</p>
<p>To exploit this vulnerability, an attacker would first have to gain execut…
|
NVD-CWE-noinfo
|
CVE-2020-16972
|
2024-11-21 14:07 |
2020-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215752
|
7.1 |
HIGH
Network
|
microsoft
|
exchange_server
|
<p>An information disclosure vulnerability exists in how Microsoft Exchange validates tokens when handling certain messages. An attacker who successfully exploited the vulnerability could use this to…
|
NVD-CWE-Other
|
CVE-2020-16969
|
2024-11-21 14:07 |
2020-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215753
|
7.8 |
HIGH
Local
|
microsoft
|
windows_10
|
<p>A remote code execution vulnerability exists when the Windows Camera Codec Pack improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary c…
|
CWE-20
CWE-787
Improper Input Validation
Out-of-bounds Write
|
CVE-2020-16968
|
2024-11-21 14:07 |
2020-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215754
|
7.8 |
HIGH
Local
|
microsoft
|
windows_10
|
<p>A remote code execution vulnerability exists when the Windows Camera Codec Pack improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary c…
|
NVD-CWE-noinfo
|
CVE-2020-16967
|
2024-11-21 14:07 |
2020-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215755
|
7.8 |
HIGH
Local
|
microsoft
|
office
365_apps
|
<p>A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability co…
|
NVD-CWE-noinfo
|
CVE-2020-16957
|
2024-11-21 14:07 |
2020-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215756
|
5.4 |
MEDIUM
Network
|
microsoft
|
dynamics_365
|
<p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server. An authenticated at…
|
CWE-79
Cross-site Scripting
|
CVE-2020-16956
|
2024-11-21 14:07 |
2020-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215757
|
7.8 |
HIGH
Local
|
microsoft
|
office
365_apps
|
<p>An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) AppVLP handles certain files. An attacker who successfully exploited the vulnerability could elev…
|
NVD-CWE-noinfo
|
CVE-2020-16955
|
2024-11-21 14:07 |
2020-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215758
|
7.8 |
HIGH
Local
|
microsoft
|
office
365_apps
|
<p>A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability cou…
|
NVD-CWE-noinfo
|
CVE-2020-16954
|
2024-11-21 14:07 |
2020-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215759
|
6.5 |
MEDIUM
Network
|
microsoft
|
sharepoint_foundation
sharepoint_server
sharepoint_enterprise_server
|
<p>An information disclosure vulnerability exists when Microsoft SharePoint Server fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain i…
|
NVD-CWE-noinfo
|
CVE-2020-16953
|
2024-11-21 14:07 |
2020-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215760
|
8.6 |
HIGH
Network
|
microsoft
|
sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server
|
<p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package. An attacker who successfully exploited the vulner…
|
CWE-346
Origin Validation Error
|
CVE-2020-16952
|
2024-11-21 14:07 |
2020-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
