Export limit exceeded: 35300 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (35300 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-21866 | 1 Microsoft | 15 Windows 10, Windows 10 1507, Windows 10 1607 and 12 more | 2025-01-02 | 7 High |
| Windows System Launcher Elevation of Privilege Vulnerability | ||||
| CVE-2022-21865 | 1 Microsoft | 11 Windows 10, Windows 10 1809, Windows 10 1909 and 8 more | 2025-01-02 | 7 High |
| Connected Devices Platform Service Elevation of Privilege Vulnerability | ||||
| CVE-2022-21864 | 1 Microsoft | 18 Windows 10, Windows 10 1507, Windows 10 1607 and 15 more | 2025-01-02 | 7 High |
| Windows UI Immersive Server API Elevation of Privilege Vulnerability | ||||
| CVE-2022-21863 | 1 Microsoft | 12 Windows 10, Windows 10 1607, Windows 10 1809 and 9 more | 2025-01-02 | 7 High |
| Windows StateRepository API Server file Elevation of Privilege Vulnerability | ||||
| CVE-2022-21862 | 1 Microsoft | 22 Windows 10, Windows 10 1507, Windows 10 1607 and 19 more | 2025-01-02 | 7 High |
| Windows Application Model Core API Elevation of Privilege Vulnerability | ||||
| CVE-2022-21861 | 1 Microsoft | 12 Windows 10, Windows 10 1809, Windows 10 1909 and 9 more | 2025-01-02 | 7 High |
| Task Flow Data Engine Elevation of Privilege Vulnerability | ||||
| CVE-2022-21860 | 1 Microsoft | 13 Windows 10, Windows 10 1507, Windows 10 1607 and 10 more | 2025-01-02 | 7 High |
| Windows AppContracts API Server Elevation of Privilege Vulnerability | ||||
| CVE-2022-21859 | 1 Microsoft | 16 Windows 10, Windows 10 1507, Windows 10 1809 and 13 more | 2025-01-02 | 7 High |
| Windows Accounts Control Elevation of Privilege Vulnerability | ||||
| CVE-2022-21858 | 1 Microsoft | 12 Windows 10, Windows 10 1809, Windows 10 1909 and 9 more | 2025-01-02 | 7.8 High |
| Windows Bind Filter Driver Elevation of Privilege Vulnerability | ||||
| CVE-2022-21872 | 1 Microsoft | 12 Windows 10, Windows 10 1809, Windows 10 1909 and 9 more | 2025-01-02 | 7 High |
| Windows Event Tracing Elevation of Privilege Vulnerability | ||||
| CVE-2022-21857 | 1 Microsoft | 22 Windows 10, Windows 10 1507, Windows 10 1607 and 19 more | 2025-01-02 | 8.8 High |
| Active Directory Domain Services Elevation of Privilege Vulnerability | ||||
| CVE-2024-11111 | 1 Google | 1 Chrome | 2025-01-02 | 4.3 Medium |
| Inappropriate implementation in Autofill in Google Chrome prior to 131.0.6778.69 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium) | ||||
| CVE-2024-11110 | 1 Google | 1 Chrome | 2025-01-02 | 6.5 Medium |
| Inappropriate implementation in Extensions in Google Chrome prior to 131.0.6778.69 allowed a remote attacker to bypass site isolation via a crafted Chrome Extension. (Chromium security severity: High) | ||||
| CVE-2024-11114 | 2 Google, Microsoft | 2 Chrome, Windows | 2025-01-02 | 8.3 High |
| Inappropriate implementation in Views in Google Chrome on Windows prior to 131.0.6778.69 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium) | ||||
| CVE-2024-11115 | 2 Apple, Google | 2 Iphone Os, Chrome | 2025-01-02 | 8.8 High |
| Insufficient policy enforcement in Navigation in Google Chrome on iOS prior to 131.0.6778.69 allowed a remote attacker to perform privilege escalation via a series of UI gestures. (Chromium security severity: Medium) | ||||
| CVE-2024-11116 | 1 Google | 1 Chrome | 2025-01-02 | 4.3 Medium |
| Inappropriate implementation in Blink in Google Chrome prior to 131.0.6778.69 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium) | ||||
| CVE-2024-11117 | 1 Google | 1 Chrome | 2025-01-02 | 4.3 Medium |
| Inappropriate implementation in FileSystem in Google Chrome prior to 131.0.6778.69 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. (Chromium security severity: Low) | ||||
| CVE-2024-28234 | 1 Contao | 1 Contao | 2025-01-02 | 4.3 Medium |
| Contao is an open source content management system. Starting in version 2.0.0 and prior to versions 4.13.40 and 5.3.4, it is possible to inject CSS styles via BBCode in comments. Installations are only affected if BBCode is enabled. Contao versions 4.13.40 and 5.3.4 have a patch for this issue. As a workaround, disable BBCode for comments. | ||||
| CVE-2024-7256 | 1 Google | 2 Android, Chrome | 2025-01-02 | 8.8 High |
| Insufficient data validation in Dawn in Google Chrome on Android prior to 127.0.6533.88 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High) | ||||
| CVE-2024-7023 | 2 Google, Microsoft | 2 Chrome, Windows | 2025-01-02 | 8 High |
| Insufficient data validation in Updater in Google Chrome prior to 128.0.6537.0 allowed a remote attacker to perform privilege escalation via a malicious file. (Chromium security severity: Medium) | ||||