Month | Quarter | Year |
---|---|---|
#11 | #10 | #10 |
CVE-ID | CWE-ID | Type | Score |
---|---|---|---|
CVE-2019-0792 | CWE-611 | Improper Restriction of XML External Entity Reference ('XXE') | 8.8 |
A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0790, CVE-2019-0791, CVE-2019-0793, CVE-2019-0795. |
|||
CVE-2019-0791 | CWE-611 | Improper Restriction of XML External Entity Reference ('XXE') | 8.8 |
A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0790, CVE-2019-0792, CVE-2019-0793, CVE-2019-0795. |
|||
CVE-2019-0790 | CWE-611 | Improper Restriction of XML External Entity Reference ('XXE') | 8.8 |
A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0791, CVE-2019-0792, CVE-2019-0793, CVE-2019-0795. |
|||
CVE-2019-0785 | CWE-119 | Improper Restriction of Operations within the Bounds of a Memory Buffer | 9.8 |
A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP failover server, aka 'Windows DHCP Server Remote Code Execution Vulnerability'. |
|||
CVE-2019-0784 | CWE-119 | Buffer Errors | 7.5 |
A remote code execution vulnerability exists in the way that the ActiveX Data objects (ADO) handles objects in memory, aka 'Windows ActiveX Remote Code Execution Vulnerability'. |
|||
CVE-2019-0782 | CWE-200 | Information Leak / Disclosure | 5.5 |
An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0702, CVE-2019-0755, CVE-2019-0767, CVE-2019-0775. |
|||
CVE-2019-0775 | CWE-200 | Information Leak / Disclosure | 4.7 |
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0702, CVE-2019-0755, CVE-2019-0767, CVE-2019-0782. |
|||
CVE-2019-0774 | CWE-200 | Information Leak / Disclosure | 6.5 |
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0614. |
|||
CVE-2019-0772 | CWE-119 | Buffer Errors | 8.8 |
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'Windows VBScript Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0665, CVE-2019-0666, CVE-2019-0667. |
|||
CVE-2019-0767 | CWE-200 | Information Leak / Disclosure | 5.5 |
An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0702, CVE-2019-0755, CVE-2019-0775, CVE-2019-0782. |