8.8
CVSS
Heap-based buffer overflow in Internet Explorer allows an unauthorized attacker to execute code over a network.
Severity: HIGH
📦
windows_server_2008
Vendor: microsoft
Actively Exploited
141
CISA KEV List
PoC / Exploits
454
Code Available
Total RCEs
810
Remote Access
Total CVEs
16698
Total Indexed
Avg. EPSS
8.39%
Exploit Prob.
Security Vulnerability Index
Page 6 / 1670
7.0
CVSS
Concurrent execution using shared resource with improper synchronization ('race condition') in Inbox COM Objects allows an unauthorized attacker to execute code locally.
Severity: HIGH
3.1
CVSS
Improper authentication in Windows SMB Client allows an unauthorized attacker to perform tampering over a network.
Severity: LOW
7.8
CVSS
Improper validation of specified type of input in Windows Authentication Methods allows an authorized attacker to elevate privileges locally.
Severity: HIGH
7.8
CVSS
Improper validation of specified type of input in Windows Authentication Methods allows an authorized attacker to elevate privileges locally.
Severity: HIGH
7.8
CVSS
Improper validation of specified type of input in Windows Authentication Methods allows an authorized attacker to elevate privileges locally.
Severity: HIGH
7.8
CVSS
Heap-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
Severity: HIGH
7.8
CVSS
Improper access control in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges locally.
Severity: HIGH
6.5
CVSS
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network.
Severity: MEDIUM
7.1
CVSS
Out-of-bounds read in Windows MapUrlToZone allows an unauthorized attacker to disclose information over a network.
Severity: HIGH