CVSS: 5.5EPSS: 0%CPEs: 22EXPL: 0CVE-2020-1194
https://notcve.org/view.php?id=CVE-2020-1194
09 Jun 2020 — A denial of service vulnerability exists when Windows Registry improperly handles filesystem operations, aka 'Windows Registry Denial of Service Vulnerability'. Se presenta una vulnerabilidad de denegación de servicio cuando Windows Registry maneja inapropiadamente las operaciones del sistema de archivos, también se conoce como "Windows Registry Denial of Service Vulnerability" • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1194 •
CVSS: 7.8EPSS: 0%CPEs: 25EXPL: 2CVE-2020-1170 – Cloud Filter Arbitrary File Creation / Privilege Escalation
https://notcve.org/view.php?id=CVE-2020-1170
09 Jun 2020 — An elevation of privilege vulnerability exists in Windows Defender that leads arbitrary file deletion on the system.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Windows Defender Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1163. Se presenta una vulnerabilidad de elevación de privilegios en Windows Defender que conlleva a una eliminación arbitraria de archivos en el sistema. Para explotar la vulnerabilidad, un atacante primer... • https://packetstorm.news/files/id/160919 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 7.8EPSS: 0%CPEs: 25EXPL: 0CVE-2020-1163
https://notcve.org/view.php?id=CVE-2020-1163
09 Jun 2020 — An elevation of privilege vulnerability exists in Windows Defender that leads arbitrary file deletion on the system.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Windows Defender Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1170. Se presenta una vulnerabilidad de elevación de privilegios en Windows Defender que conlleva a una eliminación arbitraria de archivos en el sistema. Para explotar la vulnerabilidad, un atacante primer... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1163 •
CVSS: 5.5EPSS: 0%CPEs: 22EXPL: 0CVE-2020-1160
https://notcve.org/view.php?id=CVE-2020-1160
09 Jun 2020 — An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory, aka 'Microsoft Graphics Component Information Disclosure Vulnerability'. Se presenta una vulnerabilidad de divulgación de información cuando el Microsoft Windows Graphics Component maneja inapropiadamente objetos en memoria, también se conoce como "Microsoft Graphics Component Information Disclosure Vulnerability" • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1160 •
CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-2020-1162
https://notcve.org/view.php?id=CVE-2020-1162
09 Jun 2020 — An elevation of privilege (user to user) vulnerability exists in Windows Security Health Service when handling certain objects in memory.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1324. Se presenta una vulnerabilidad de elevación de privilegios (usuario a usuario) en el Windows Security Health Service cuando se manejan determinados objetos en memoria. Para explotar la vulnerabilid... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1162 •
CVSS: 9.3EPSS: 3%CPEs: 11EXPL: 0CVE-2020-1073
https://notcve.org/view.php?id=CVE-2020-1073
09 Jun 2020 — A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'. Se presenta una vulnerabilidad de ejecución de código remota en la manera en que el motor de scripting ChakraCore maneja objetos en memoria, también se conoce como "Scripting Engine Memory Corruption Vulnerability" • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1073 • CWE-787: Out-of-bounds Write •
CVSS: 7.6EPSS: 2%CPEs: 29EXPL: 0CVE-2020-1219 – Microsoft Chakra Intl Object Type Confusion Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-1219
09 Jun 2020 — A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka 'Microsoft Browser Memory Corruption Vulnerability'. Se presenta una vulnerabilidad de ejecución de código remota en la manera en que los navegadores de Microsoft acceden a objetos en memoria, también se conoce como "Microsoft Browser Memory Corruption Vulnerability" This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Chakra. User interaction i... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1219 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 8.8EPSS: 0%CPEs: 22EXPL: 0CVE-2020-1207 – Microsoft Windows win32kfull PDEVOBJ Use-After-Free Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-1207
09 Jun 2020 — An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1247, CVE-2020-1251, CVE-2020-1253, CVE-2020-1310. Se presenta una vulnerabilidad de elevación de privilegios en Windows cuando el controlador del modo kernel de Windows presenta un fallo al manejar apropiadamente objetos en memoria, también se conoce como "Win32k Elevation of Privilege... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1207 • CWE-416: Use After Free •
CVSS: 6.5EPSS: 14%CPEs: 13EXPL: 0CVE-2020-1232 – Microsoft Windows Media Player DTS Stream Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-1232
09 Jun 2020 — An information disclosure vulnerability exists when Media Foundation improperly handles objects in memory, aka 'Media Foundation Information Disclosure Vulnerability'. Se presenta una vulnerabilidad de divulgación de información cuando Media Foundation maneja inapropiadamente objetos en memoria, también se conoce como "Media Foundation Information Disclosure Vulnerability" This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Windows Media Player... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1232 • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 2%CPEs: 22EXPL: 0CVE-2020-1239 – Microsoft Windows Media Player mpg2splt Integer Underflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-1239
09 Jun 2020 — A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-1238. Se presenta una vulnerabilidad de corrupción de la memoria cuando Windows Media Foundation maneja inapropiadamente objetos en memoria, también se conoce como "Media Foundation Memory Corruption Vulnerability". Este ID de CVE es diferente de CVE-2020-1238 This vulnerability allows remote attackers to exec... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1239 • CWE-20: Improper Input Validation CWE-191: Integer Underflow (Wrap or Wraparound) CWE-787: Out-of-bounds Write •