Shodan
Vulnerabilities
Vulnerable Software
Microsoft:  >> Windows Server 1903  Security Vulnerabilities
CVE-2020-0638
Known exploited
An elevation of privilege vulnerability exists in the way the Update Notification Manager handles files.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Update Notification Manager Elevation of Privilege Vulnerability'.
CVSS Score
7.8
EPSS Score
0.071
Published
2020-01-14
CVE-2020-0601
Known exploited
A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates.An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted, legitimate source, aka 'Windows CryptoAPI Spoofing Vulnerability'.
CVSS Score
8.1
EPSS Score
0.939
Published
2020-01-14
CVE-2019-1405
Known exploited
An elevation of privilege vulnerability exists when the Windows Universal Plug and Play (UPnP) service improperly allows COM object creation, aka 'Windows UPnP Service Elevation of Privilege Vulnerability'.
CVSS Score
7.8
EPSS Score
0.6
Published
2019-11-12
CVE-2019-1388
Known exploited
An elevation of privilege vulnerability exists in the Windows Certificate Dialog when it does not properly enforce user privileges, aka 'Windows Certificate Dialog Elevation of Privilege Vulnerability'.
CVSS Score
7.8
EPSS Score
0.037
Published
2019-11-12
CVE-2019-1322
Known exploited
An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka 'Microsoft Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1320, CVE-2019-1340.
CVSS Score
7.8
EPSS Score
0.397
Published
2019-10-10
CVE-2019-1253
Known exploited
An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1215, CVE-2019-1278, CVE-2019-1303.
CVSS Score
7.8
EPSS Score
0.202
Published
2019-09-11
CVE-2019-1214
Known exploited
An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka 'Windows Common Log File System Driver Elevation of Privilege Vulnerability'.
CVSS Score
7.8
EPSS Score
0.105
Published
2019-09-11
CVE-2019-1215
Known exploited
An elevation of privilege vulnerability exists in the way that ws2ifsl.sys (Winsock) handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1253, CVE-2019-1278, CVE-2019-1303.
CVSS Score
7.8
EPSS Score
0.034
Published
2019-09-11
CVE-2019-1130
Known exploited
An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1129.
CVSS Score
7.8
EPSS Score
0.041
Published
2019-07-15
CVE-2019-1129
Known exploited
An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1130.
CVSS Score
7.8
EPSS Score
0.102
Published
2019-07-15


Products
Pricing
Contact Us

Shodan ® - All rights reserved