CVE Catalog

A remote code execution vulnerability has been identified in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system.

A denial-of-service vulnerability has been identified in Microsoft Message Queuing (MSMQ). This issue allows an attacker to send specially crafted packets that can disrupt the availability of the MSMQ service, leading to a denial-of-service condition.

A denial-of-service vulnerability has been identified in the Windows Virtual Trusted Platform Module. This issue affects several different versions and can lead to a significant loss of availability.

A remote code execution vulnerability has been identified in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system.

An elevation of privilege vulnerability has been identified in Microsoft COM for Windows. This vulnerability allows an attacker to gain higher privileges than intended, potentially leading to unauthorized actions or access within the system.

A denial-of-service vulnerability has been identified in the Windows Virtual Trusted Platform Module. This issue affects multiple versions of Windows 10 and Windows 11, as well as Windows Server 2016. The vulnerability arises from improper input validation, which can be exploited to disrupt the availability of the Virtual Trusted Platform Module services.

A denial-of-service vulnerability has been identified in Windows Remote Desktop Gateway (RD Gateway). This vulnerability can cause a disruption in service, potentially leading to a temporary unavailability of the RD Gateway functionality.

A denial-of-service vulnerability has been identified in Microsoft Message Queuing (MSMQ). This issue allows an attacker to send specially crafted packets that can disrupt the availability of the MSMQ service, leading to a denial-of-service condition.

A denial-of-service vulnerability has been identified in the Windows MapUrlToZone function. This vulnerability can be exploited to cause a disruption in service, although the specific details of the exploitation are not provided.

An elevation of privilege vulnerability has been identified in the Windows App Package Installer. This vulnerability allows a user to gain higher privileges than intended, potentially leading to unauthorized actions or access within the system.

A denial-of-service vulnerability has been identified in the Windows Event Tracing component. This issue can be exploited to disrupt the normal functioning of the system, potentially leading to a crash or unresponsiveness.

A remote code execution vulnerability exists in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system. The vulnerability is present in multiple Windows versions, including various editions of Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, and Windows Server 2022. The vulnerability arises from a heap-based buffer overflow, which can be exploited by tricking a user into sending a request to a malicious server that returns harmful data, potentially leading to code execution on the user's machine.

A vulnerability allowing information disclosure has been identified in the Windows COM Server. This issue arises from the improper handling of memory, which could allow an attacker to read small portions of heap memory. The vulnerability affects several versions of Windows Server and Windows 10, as well as Windows 11 and Windows Server 2022.

An elevation of privilege vulnerability has been identified in the Windows Cloud Files Mini Filter Driver. This vulnerability allows an attacker to gain SYSTEM privileges. It affects multiple versions of Windows 10 and Windows Server 2022 and 2019.

A denial-of-service vulnerability has been identified in Microsoft Message Queuing (MSMQ). This vulnerability allows an attacker to send specially crafted packets that can disrupt the availability of the MSMQ service, leading to a denial-of-service condition.

A security feature bypass vulnerability has been identified in the Windows HTML platform, affecting all supported versions of Microsoft Windows. This vulnerability arises because the MSHTML platform does not properly validate the security zone of requests for certain URLs. As a result, an attacker could potentially cause a user to access a URL in a less restricted Internet Security Zone than intended. Exploitation requires convincing the user to open a specially crafted file or click on a manipulated link.

A security feature bypass vulnerability has been identified in the MapUrlToZone method across various supported versions of Microsoft Windows. This vulnerability allows an attacker to bypass certain security features, potentially leading to unauthorized access or manipulation of information. The issue arises from improper resolution of path equivalence, which can be exploited by convincing a user to open a specially crafted file.

A remote code execution vulnerability exists in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system. The vulnerability is present in multiple Windows Server and Windows 10/11 versions.

A vulnerability allowing elevation of privilege has been identified in Windows Digital Media. This issue affects several versions of Windows Server and Windows 10, as well as Windows 11 and Windows Server 2022. The vulnerability arises from an out-of-bounds read, which could be exploited to gain SYSTEM privileges, particularly by an attacker with physical access to the device.

A vulnerability allowing elevation of privilege has been identified in Windows Digital Media. This issue could enable an attacker to gain higher privileges on the affected system.

A vulnerability allowing elevation of privilege has been identified in Windows Digital Media. This issue arises from an out-of-bounds read, which could potentially be exploited to gain SYSTEM privileges. The vulnerability is present in several Windows versions, including various releases of Windows Server, Windows 10, and Windows 11.

A vulnerability allowing elevation of privilege has been identified in Windows Digital Media. This issue affects several versions of Windows Server and Windows 10. The vulnerability arises from an out-of-bounds read, which could be exploited to gain SYSTEM privileges.

A vulnerability allowing elevation of privilege has been identified in Windows Digital Media. This issue affects several versions of Windows Server and Windows 10, as well as Windows 11 and Windows Server 2022. The vulnerability arises from an out-of-bounds read, which could be exploited to gain SYSTEM privileges.

A vulnerability allowing information disclosure has been identified in the Windows WLAN AutoConfig Service. This issue arises from an out-of-bounds read, which could enable an attacker to access small portions of heap memory. The vulnerability affects multiple Windows versions, including various editions of Windows 10, Windows 11, Windows Server 2016, and Windows Server 2022.

A vulnerability has been identified in Windows Digital Media that allows for elevation of privilege. This issue affects multiple versions of Windows Server and Windows 10. The vulnerability arises from a heap-based buffer overflow, which could be exploited to gain SYSTEM privileges.

An elevation of privilege vulnerability has been identified in Windows Digital Media. This issue allows an attacker with physical access to the device to exploit the vulnerability and gain SYSTEM privileges.

A remote code execution vulnerability has been identified in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system.

A denial-of-service vulnerability has been identified in Microsoft Message Queuing (MSMQ). This vulnerability allows an attacker to send specially crafted packets that can disrupt the availability of the MSMQ service, leading to a denial-of-service condition.

A remote code execution vulnerability has been identified in the Windows Telephony Service. This vulnerability allows an attacker to execute arbitrary code on the affected system. It is present in several versions of Windows Server and Windows 10 and 11.

An elevation of privilege vulnerability has been identified in the Windows Digital Media component. This vulnerability allows an attacker to gain higher privileges on the system.

A remote code execution vulnerability has been identified in the Windows Telephony Service. This vulnerability allows an attacker to execute arbitrary code on the affected system. It is present in multiple Windows versions, including Windows 10, Windows 11, Windows Server 2016, Windows Server 2022, and Windows Server 2019. The vulnerability arises from a heap-based buffer overflow, which can be exploited by tricking a user into sending a request to a malicious server that returns harmful data.

A remote code execution vulnerability exists in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system.

A remote code execution vulnerability exists in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system. The vulnerability arises from a heap-based buffer overflow and an out-of-bounds read.

A remote code execution vulnerability exists in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system. The vulnerability is present in several versions of Windows Server and Windows 10, as well as in Windows 11 and Windows Server 2022.

A remote code execution vulnerability has been identified in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system.

A vulnerability allowing information disclosure has been identified in the Windows Kerberos implementation. This issue arises from an unintentional read access to kernel memory by a user mode process, potentially allowing sensitive information to be exposed.

A remote code execution vulnerability exists in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system.

A remote code execution vulnerability exists in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system. The vulnerability arises from a heap-based buffer overflow, which can be exploited by tricking a user into sending a request to a malicious server that returns harmful data.

A remote code execution vulnerability has been identified in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system.

A remote code execution vulnerability exists in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system.

A remote code execution vulnerability has been identified in the Windows Telephony Service. This vulnerability allows an attacker to execute arbitrary code on the affected system. It is present in multiple Windows Server and Windows 10/11 versions, as well as in Windows Server 2022 and 2025.

A remote code execution vulnerability exists in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system. The vulnerability is present in multiple Windows Server and Windows 10/11 versions, as well as in Windows Server 2025.

A vulnerability allowing elevation of privilege has been identified in the Windows PrintWorkflowUserSvc. This issue arises from improper input validation, which could enable an attacker to elevate privileges from a low integrity level in a sandboxed environment to a medium integrity level.

An elevation of privilege vulnerability has been identified in the Windows PrintWorkflowUserSvc. This vulnerability allows an attacker to elevate privileges from a low integrity level in a sandboxed environment to a medium integrity level. The issue arises from improper input validation, which could be exploited to gain higher privileges.

A remote code execution vulnerability has been identified in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system.

An elevation of privilege vulnerability has been identified in Windows Digital Media. This vulnerability allows an attacker with physical access to the device to gain SYSTEM privileges. It affects multiple versions of Windows Server and Windows 10, as well as Windows 11 and Windows Server 2022.

A denial-of-service vulnerability has been identified in the IP Helper component of Microsoft products. This vulnerability can be exploited to disrupt service, causing a denial-of-service condition.

A denial-of-service vulnerability has been identified in Microsoft Message Queuing (MSMQ). This vulnerability allows an attacker to send specially crafted packets that can disrupt the availability of the MSMQ service, leading to a denial-of-service condition.

An elevation of privilege vulnerability has been identified in Windows Digital Media. This issue allows an attacker with physical access to a vulnerable system to gain SYSTEM privileges. The vulnerability arises from an out-of-bounds read, which can be exploited under certain conditions.

A vulnerability allowing elevation of privilege has been identified in Windows Digital Media. This issue affects several versions of Windows, including Windows 10, Windows 11, Windows Server 2019, and Windows Server 2022. The vulnerability arises from an out-of-bounds read, which could be exploited by an attacker with physical access to the device, potentially leading to SYSTEM privileges.