| Month | Quarter | Year |
|---|---|---|
| #1 | #5 | #7 |
| CVE-ID | CWE-ID | Type | Score |
|---|---|---|---|
| CVE-2019-0682 | CWE-190 | Integer Overflow or Wraparound | 7.8 |
An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0689, CVE-2019-0692, CVE-2019-0693, CVE-2019-0694. |
|||
| CVE-2019-0662 | CWE-119 | Buffer Errors | 8.8 |
A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0618. |
|||
| CVE-2019-0660 | CWE-200 | Information Leak / Disclosure | 6.5 |
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0602, CVE-2019-0615, CVE-2019-0616, CVE-2019-0619, CVE-2019-0664. |
|||
| CVE-2019-0659 | CWE-264 | Permissions, Privileges, and Access Control | 7.0 |
An elevation of privilege vulnerability exists when the Storage Service improperly handles file operations, aka 'Windows Storage Service Elevation of Privilege Vulnerability'. |
|||
| CVE-2019-0656 | CWE-264 | Permissions, Privileges, and Access Control | 7.0 |
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. |
|||
| CVE-2019-0635 | CWE-200 | Information Leak / Disclosure | 6.2 |
An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka 'Windows Hyper-V Information Disclosure Vulnerability'. |
|||
| CVE-2019-0633 | CWE-19 | Data Handling | 8.8 |
A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 2.0 (SMBv2) server handles certain requests, aka 'Windows SMB Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0630. |
|||
| CVE-2019-0632 | CWE-264 | Permissions, Privileges, and Access Control | 7.8 |
A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard, aka 'Windows Security Feature Bypass Vulnerability'. This CVE ID is unique from CVE-2019-0627, CVE-2019-0631. |
|||
| CVE-2019-0631 | CWE-264 | Permissions, Privileges, and Access Control | 7.8 |
A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard, aka 'Windows Security Feature Bypass Vulnerability'. This CVE ID is unique from CVE-2019-0627, CVE-2019-0632. |
|||
| CVE-2019-0630 | CWE-19 | Data Handling | 8.8 |
A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 2.0 (SMBv2) server handles certain requests, aka 'Windows SMB Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0633. |
|||