| Month | Quarter | Year |
|---|---|---|
| #1 | #5 | #7 |
| CVE-ID | CWE-ID | Type | Score |
|---|---|---|---|
| CVE-2019-0805 | CWE-264 | Permissions, Privileges, and Access Control | 7.8 |
An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0796, CVE-2019-0836, CVE-2019-0841. |
|||
| CVE-2019-0802 | CWE-200 | Information Leak / Disclosure | 6.5 |
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0849. |
|||
| CVE-2019-0796 | CWE-264 | Permissions, Privileges, and Access Control | 5.5 |
An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0805, CVE-2019-0836, CVE-2019-0841. |
|||
| CVE-2019-0795 | CWE-611 | Improper Restriction of XML External Entity Reference ('XXE') | 8.8 |
A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0790, CVE-2019-0791, CVE-2019-0792, CVE-2019-0793. |
|||
| CVE-2019-0794 | CWE-119 | Buffer Errors | 8.8 |
A remote code execution vulnerability exists when OLE automation improperly handles objects in memory, aka 'OLE Automation Remote Code Execution Vulnerability'. |
|||
| CVE-2019-0793 | CWE-611 | Improper Restriction of XML External Entity Reference ('XXE') | 8.8 |
A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0790, CVE-2019-0791, CVE-2019-0792, CVE-2019-0795. |
|||
| CVE-2019-0792 | CWE-611 | Improper Restriction of XML External Entity Reference ('XXE') | 8.8 |
A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0790, CVE-2019-0791, CVE-2019-0793, CVE-2019-0795. |
|||
| CVE-2019-0791 | CWE-611 | Improper Restriction of XML External Entity Reference ('XXE') | 8.8 |
A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0790, CVE-2019-0792, CVE-2019-0793, CVE-2019-0795. |
|||
| CVE-2019-0790 | CWE-611 | Improper Restriction of XML External Entity Reference ('XXE') | 8.8 |
A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0791, CVE-2019-0792, CVE-2019-0793, CVE-2019-0795. |
|||
| CVE-2019-0785 | CWE-119 | Improper Restriction of Operations within the Bounds of a Memory Buffer | 9.8 |
A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP failover server, aka 'Windows DHCP Server Remote Code Execution Vulnerability'. |
|||