CVSS: 7.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-33156 – Microsoft Defender Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-33156
11 Jul 2023 — Microsoft Defender Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33156 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-24860 – Microsoft Defender Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-24860
11 Apr 2023 — Microsoft Defender Denial of Service Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24860 •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2022-37971 – Microsoft Windows Defender Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-37971
11 Oct 2022 — Microsoft Windows Defender Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios de Microsoft Windows Defender • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37971 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-24548 – Microsoft Defender Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2022-24548
15 Apr 2022 — Microsoft Defender Denial of Service Vulnerability Una vulnerabilidad de Denegación de Servicio de Microsoft Defender • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24548 •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2021-42298 – Microsoft Defender Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-42298
10 Nov 2021 — Microsoft Defender Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota de Microsoft Defender • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42298 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-34471 – Microsoft Windows Defender Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-34471
11 Aug 2021 — Microsoft Windows Defender Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios de Microsoft Windows Defender This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within Windows Defender. By creating a directory junction, an attacker can abuse W... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34471 • CWE-269: Improper Privilege Management •
CVSS: 9.3EPSS: 1%CPEs: 1EXPL: 0CVE-2021-34522 – Microsoft Defender Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-34522
14 Jul 2021 — Microsoft Defender Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota de Microsoft Defender. Este ID de CVE es diferente de CVE-2021-34464 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34522 •
CVSS: 8.8EPSS: 3%CPEs: 1EXPL: 1CVE-2021-31985 – Microsoft Defender Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-31985
08 Jun 2021 — Microsoft Defender Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota en Microsoft Defender ASProtect embeds a runtime DLL that is susceptible to memory corruption. Crash testcase provided. • https://packetstorm.news/files/id/163443 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-31978 – Microsoft Defender Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2021-31978
08 Jun 2021 — Microsoft Defender Denial of Service Vulnerability Una vulnerabilidad de Denegación de Servicio en Microsoft Defender • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31978 •
CVSS: 9.3EPSS: 82%CPEs: 15EXPL: 0CVE-2017-11940 – Microsoft Security Bulletin Summary for December, 2017
https://notcve.org/view.php?id=CVE-2017-11940
08 Dec 2017 — The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Windows 7 SP1, Windows 8.1, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, 1709 and Windows Server 2016, Windows Server, version 1709, Microsoft Exchange Server 2013 and 2016, does not properly scan a specially crafted file leading to remote code execution. aka "Microsoft Malware Protection Engine Remote Code Execution Vulnerability". This is different than CVE-2017-11937. Microsoft Malware Protection En... • http://www.securityfocus.com/bid/102104 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •