Vulnerabilities (CVE)

Filtered by vendor Microsoft Subscribe
Total 21492 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-42309 1 Microsoft 3 Sharepoint Enterprise Server, Sharepoint Foundation, Sharepoint Server 2024-11-21 6.5 MEDIUM 8.8 HIGH
Microsoft SharePoint Server Remote Code Execution Vulnerability
CVE-2021-42308 1 Microsoft 1 Edge Chromium 2024-11-21 5.0 MEDIUM 3.1 LOW
Microsoft Edge (Chromium-based) Spoofing Vulnerability
CVE-2021-42307 1 Microsoft 1 Edge Chromium 2024-11-21 N/A 4.3 MEDIUM
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
CVE-2021-42306 1 Microsoft 4 Azure Active Directory, Azure Active Site Recovery, Azure Automation and 1 more 2024-11-21 4.0 MEDIUM 8.1 HIGH
An information disclosure vulnerability manifests when a user or an application uploads unprotected private key data as part of an authentication certificate keyCredential  on an Azure AD Application or Service Principal (which is not recommended). This vulnerability allows a user or service in the tenant with application read access to read the private key data that was added to the application. Azure AD addressed this vulnerability by preventing disclosure of any private key values added to the application. Microsoft has identified services that could manifest this vulnerability, and steps that customers should take to be protected. Refer to the FAQ section for more information. For more details on this issue, please refer to the MSRC Blog Entry.
CVE-2021-42305 1 Microsoft 1 Exchange Server 2024-11-21 4.3 MEDIUM 6.5 MEDIUM
Microsoft Exchange Server Spoofing Vulnerability
CVE-2021-42304 1 Microsoft 1 Azure Real Time Operating System 2024-11-21 7.2 HIGH 6.6 MEDIUM
Azure RTOS Elevation of Privilege Vulnerability
CVE-2021-42303 1 Microsoft 1 Azure Real Time Operating System 2024-11-21 7.2 HIGH 6.6 MEDIUM
Azure RTOS Elevation of Privilege Vulnerability
CVE-2021-42302 1 Microsoft 1 Azure Real Time Operating System 2024-11-21 7.2 HIGH 6.6 MEDIUM
Azure RTOS Elevation of Privilege Vulnerability
CVE-2021-42301 1 Microsoft 1 Azure Rtos 2024-11-21 2.1 LOW 3.3 LOW
Azure RTOS Information Disclosure Vulnerability
CVE-2021-42300 1 Microsoft 1 Azure Sphere 2024-11-21 4.6 MEDIUM 6.0 MEDIUM
Azure Sphere Tampering Vulnerability
CVE-2021-42299 1 Microsoft 2 Surface Pro 3, Surface Pro 3 Firmware 2024-11-21 3.6 LOW 5.6 MEDIUM
Microsoft Surface Pro 3 Security Feature Bypass Vulnerability
CVE-2021-42298 1 Microsoft 1 Malware Protection Engine 2024-11-21 9.3 HIGH 7.8 HIGH
Microsoft Defender Remote Code Execution Vulnerability
CVE-2021-42297 1 Microsoft 1 Windows 10 Update Assistant 2024-11-21 6.9 MEDIUM 5.0 MEDIUM
Windows 10 Update Assistant Elevation of Privilege Vulnerability
CVE-2021-42296 1 Microsoft 2 365 Apps, Office 2024-11-21 6.9 MEDIUM 7.8 HIGH
Microsoft Word Remote Code Execution Vulnerability
CVE-2021-42295 1 Microsoft 2 365 Apps, Office 2024-11-21 4.3 MEDIUM 5.5 MEDIUM
Visual Basic for Applications Information Disclosure Vulnerability
CVE-2021-42294 1 Microsoft 3 Sharepoint Enterprise Server, Sharepoint Foundation, Sharepoint Server 2024-11-21 6.5 MEDIUM 7.2 HIGH
Microsoft SharePoint Server Remote Code Execution Vulnerability
CVE-2021-42293 1 Microsoft 2 365 Apps, Office 2024-11-21 5.0 MEDIUM 6.5 MEDIUM
Microsoft Jet Red Database Engine and Access Connectivity Engine Elevation of Privilege Vulnerability
CVE-2021-42291 1 Microsoft 6 Windows Server, Windows Server 2008, Windows Server 2012 and 3 more 2024-11-21 6.5 MEDIUM 7.5 HIGH
Active Directory Domain Services Elevation of Privilege Vulnerability
CVE-2021-42288 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2024-11-21 3.6 LOW 5.7 MEDIUM
Windows Hello Security Feature Bypass Vulnerability
CVE-2021-42286 1 Microsoft 3 Windows 10, Windows Server, Windows Server 2016 2024-11-21 4.6 MEDIUM 7.8 HIGH
Windows Core Shell SI Host Extension Framework for Composable Shell Elevation of Privilege Vulnerability