CVSS: 9.3EPSS: 0%CPEs: 11EXPL: 0CVE-2020-1028 – Microsoft Windows Media Player HEVC Stream Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-1028
12 May 2020 — A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-1126, CVE-2020-1136, CVE-2020-1150. Existe una vulnerabilidad de corrupción de memoria cuando Windows Media Foundation maneja inapropiadamente objetos en memoria, también se conoce como "Media Foundation Memory Corruption Vulnerability". Este ID de CVE es diferente de CVE-2020-1126, CVE-2020-1136, CVE-2020-115... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1028 • CWE-787: Out-of-bounds Write •
CVSS: 9.6EPSS: 5%CPEs: 6EXPL: 0CVE-2020-1096 – Microsoft Windows PDF Library DirectWrite Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-1096
12 May 2020 — A remote code execution vulnerability exists when Microsoft Edge PDF Reader improperly handles objects in memory, aka 'Microsoft Edge PDF Remote Code Execution Vulnerability'. Existe una vulnerabilidad de ejecución de código remota cuando Microsoft Edge PDF Reader maneja inapropiadamente objetos en memoria, también se conoce como "Microsoft Edge PDF Remote Code Execution Vulnerability'". This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Windows. User... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1096 •
CVSS: 8.8EPSS: 0%CPEs: 9EXPL: 0CVE-2020-1135 – Microsoft Windows DirectComposition SetReferenceArrayProperty Use-After-Free Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-1135
12 May 2020 — An elevation of privilege vulnerability exists when the Windows Graphics Component improperly handles objects in memory, aka 'Windows Graphics Component Elevation of Privilege Vulnerability'. Se presenta una vulnerabilidad de elevación de privilegios cuando el Windows Graphics Component maneja inapropiadamente objetos en memoria, también se conoce como "Windows Graphics Component Elevation of Privilege Vulnerability". This vulnerability allows local attackers to escalate privileges on affected installations... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1135 •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2020-1094
https://notcve.org/view.php?id=CVE-2020-1094
15 Apr 2020 — An elevation of privilege vulnerability exists when the Windows Work Folder Service improperly handles file operations, aka 'Windows Work Folder Service Elevation of Privilege Vulnerability'. Hay una vulnerabilidad de elevación de privilegios cuando Windows Work Folder Service maneja inapropiadamente operaciones de archivos, también se conoce como "Windows Work Folder Service Elevation of Privilege Vulnerability". • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1094 •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2020-1029
https://notcve.org/view.php?id=CVE-2020-1029
15 Apr 2020 — An elevation of privilege vulnerability exists when Connected User Experiences and Telemetry Service improperly handles file operations, aka 'Connected User Experiences and Telemetry Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0942, CVE-2020-0944. Hay una vulnerabilidad de elevación de privilegios cuando Connected User Experiences and Telemetry Service, maneja inapropiadamente operaciones de archivos, también se conoce como "Connected User Experiences and Telemetry Ser... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1029 •
CVSS: 9.3EPSS: 0%CPEs: 20EXPL: 2CVE-2020-1027 – Microsoft Windows Kernel Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-1027
15 Apr 2020 — An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0913, CVE-2020-1000, CVE-2020-1003. Hay una vulnerabilidad de elevación de privilegios en la manera en que el kernel de Windows maneja objetos en memoria, también se conoce como "Windows Kernel Elevation of Privilege Vulnerability". Este ID de CVE es diferente de CVE-2020-0913, CVE-2020-1000, CVE-2020-1003.... • https://packetstorm.news/files/id/168068 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 94%CPEs: 20EXPL: 2CVE-2020-1020 – Microsoft Windows Adobe Font Manager Library Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-1020
15 Apr 2020 — A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely, aka 'Adobe Font Manager Library Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0938. Hay una vulnerabilidad de ejecución de código remota en Microsoft Windows cuand... • https://github.com/KaLendsi/CVE-2020-1020 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-2020-1017
https://notcve.org/view.php?id=CVE-2020-1017
15 Apr 2020 — An elevation of privilege vulnerability exists in the way the Windows Push Notification Service handles objects in memory, aka 'Windows Push Notification Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0940, CVE-2020-1001, CVE-2020-1006. Hay una vulnerabilidad de elevación de privilegios en la manera en que el Windows Push Notification Service maneja objetos en memoria, también se conoce como "Windows Push Notification Service Elevation of Privilege Vulnerability". Este ID... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1017 •
CVSS: 5.5EPSS: 0%CPEs: 17EXPL: 0CVE-2020-1016
https://notcve.org/view.php?id=CVE-2020-1016
15 Apr 2020 — An information disclosure vulnerability exists when the Windows Push Notification Service improperly handles objects in memory, aka 'Windows Push Notification Service Information Disclosure Vulnerability'. Hay una vulnerabilidad de divulgación de información cuando el Windows Push Notification Service maneja inapropiadamente objetos en memoria, también se conoce como "Windows Push Notification Service Information Disclosure Vulnerability". • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1016 •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2020-1014
https://notcve.org/view.php?id=CVE-2020-1014
15 Apr 2020 — An elevation of privilege vulnerability exists in the Microsoft Windows Update Client when it does not properly handle privileges, aka 'Microsoft Windows Update Client Elevation of Privilege Vulnerability'. Hay una vulnerabilidad de elevación de privilegios en el Microsoft Windows Update Client cuando no maneja apropiadamente los privilegios, también se conoce como "Microsoft Windows Update Client Elevation of Privilege Vulnerability". • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1014 • CWE-269: Improper Privilege Management •