Microsoft Schwachstellen

Zeitverlauf

Typ

Operating System	5079
Web Browser	2131
Groupware Software	575
Office Suite Software	489
Not Defined	455

Produkt

Microsoft Windows	5038
Microsoft Internet Explorer	1171
Microsoft Edge	959
Microsoft Office	472
Microsoft SharePoint Server	211

Massnahmen

Official Fix	9567
Temporary Fix	1
Workaround	24
Unavailable	69
Not Defined	339

Ausnutzbarkeit

High	410
Functional	41
Proof-of-Concept	1478
Unproven	3225
Not Defined	4846

Zugriffsart

Not Defined	0
Physical	77
Local	1707
Adjacent	236
Network	7980

Authentisierung

Not Defined	0
High	373
Low	4121
None	5506

Benutzeraktivität

Not Defined	0
Required	4223
None	5777

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	17
≤4	184
≤5	1150
≤6	1639
≤7	2437
≤8	2821
≤9	1321
≤10	431

CVSSv3 Temp

≤1	0
≤2	0
≤3	51
≤4	304
≤5	1504
≤6	2235
≤7	2872
≤8	2152
≤9	623
≤10	259

VulDB

≤1	0
≤2	3
≤3	130
≤4	526
≤5	1336
≤6	1061
≤7	3320
≤8	1836
≤9	1330
≤10	458

NVD

≤1	0
≤2	0
≤3	10
≤4	48
≤5	319
≤6	777
≤7	471
≤8	2349
≤9	572
≤10	120

CNA

≤1	0
≤2	0
≤3	4
≤4	16
≤5	106
≤6	211
≤7	440
≤8	1010
≤9	407
≤10	58

Hersteller

≤1	0
≤2	0
≤3	17
≤4	62
≤5	864
≤6	702
≤7	997
≤8	2549
≤9	691
≤10	116

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	1
≤7	0
≤8	1
≤9	1
≤10	0

Exploit 0-day

<1k	9
<2k	11
<5k	183
<10k	726
<25k	2385
<50k	3123
<100k	3032
≥100k	531

Exploit heute

<1k	3768
<2k	677
<5k	1248
<10k	1802
<25k	2428
<50k	63
<100k	14
≥100k	0

Exploitmarktvolumen

🔴 CTI Aktivitäten

Affected Products (411): .NET (44), .NET Core (23), .NET Core SDK (1), .NET Education Bundle SDK Install Tool (1), .NET Framework (135), .NET Install Tool for Extension Authors (1), 3D Builder (20), 3D Viewer (10), 4K Wireless Display Adapter (1), 365 Apps for Enterprise (25), @azure-ms-rest-nodeauth (1), ADAL.NET (1), ASP.NET (10), ASP.NET Core (27), ASP.NET Core MVC (2), ASP.NET MVC (1), ASP .NET SignalR (1), AV1 Video Extension (6), Access (10), Accessibility Insights (1), Accessibility Insights for Web (1), Active Directory Federation Services (1), Anti-cross Site Scripting Library (1), App Installer (1), Application Inspector (1), Arc Cluster Extension (1), Authentication Library (1), Authenticator (1), AutoUpdate for Mac (1), Azure (5), Azure AD (1), Azure AD B2C (1), Azure AD Connect (1), Azure AI Playground (1), Azure AI Search (1), Azure API Management Service (1), Azure ARC (1), Azure Active Directory (1), Azure Active Directory B2C (1), Azure Active Directory Connect (2), Azure Active Directory Passport (1), Azure App Service (3), Azure App Service on Azure Stack Hub (1), Azure Arc-Enabled Servers (1), Azure Arc-enabled Kubernetes Cluster (1), Azure Arc Jumpstart (1), Azure Automation (3), Azure Automation State Configuration (1), Azure Automation Update Management (2), Azure Bastion (1), Azure Batch (1), Azure CLI (2), Azure Cognitive Search (1), Azure Command-Line Interface (1), Azure Compute Gallery (1), Azure Connected Machine Agent (2), Azure Container Instance (1), Azure Container Registry (1), Azure CycleCloud (5), Azure Data Box Gateway (1), Azure Data Explorer (1), Azure Data Studio (1), Azure DevOps Server (39), Azure Diagnostics (1), Azure Digital Twins Explorer (1), Azure EFLOW (1), Azure File Sync (2), Azure Front Door (1), Azure Function Apps (1), Azure Functions (2), Azure Guest Configuration (1), Azure HDInsights (8), Azure Health Bot Service (4), Azure Identity Library (1), Azure Identity Library for .NET (1), Azure Identity SDK (1), Azure Identity SDK for .NET (1), Azure IoT CLI Extension (1), Azure IoT Edge (2), Azure IoT SDK (1), Azure Kinect SDK (1), Azure Kubernetes Service (5), Azure Kubernetes Service Confidential Container (1), Azure Kubernetes Service Confidential Containers (3), Azure Linux Guest Agent (1), Azure Logic Apps (2), Azure Machine Learning (2), Azure Machine Learning SDK (1), Azure Machine Learning Service (1), Azure Migrate (3), Azure Monitor Agent (3), Azure Network Watcher VM Extension (3), Azure On-Premises Data Gateway (1), Azure Open Management Infrastructure (5), Azure Pack Rollup (1), Azure Pipelines Agent (1), Azure Private 5G Core (1), Azure RTOS (6), Azure RTOS GUIX (1), Azure RTOS GUIX Studio (2), Azure RTOS USBX (2), Azure Real Time Operating System GUIX Studio (8), Azure Resource Manager (1), Azure SDK (1), Azure SDK for .NET (1), Azure SDK for Java (1), Azure SSH Keypairs (1), Azure Science Virtual Machine (1), Azure Security Center (2), Azure Sentinel (2), Azure Service Connector (1), Azure Service Fabric (5), Azure Service Fabric Explorer (1), Azure Site Recovery (3), Azure Site Recovery VMWare to Azure (80), Azure Sphere (30), Azure Spring Cloud (1), Azure Stack (1), Azure Stack Edge (2), Azure Stack Hub (2), Azure StorSimple 8000 (1), Azure Storage Blobs Client Library (2), Azure Storage Movement Client Library (1), Azure Storage Mover Agent (1), Azure setup-kubectl (1), Bing (1), Bing Search (3), BizTalk ESB Toolkit (1), Bond (1), Bot Framework SDK (2), Business Productivity Servers (1), C SDK for Azure IoT (2), ChakraCore (207), Chakra Core (5), Chess Titan (1), Clarity (1), Clarity Plugin (1), Common Data Model SDK (1), Common Utilities (1), Compiled HTML Help (1), Container Monitoring Solution (2), Data.OData (1), Data Access Components (2), Defender (1), Defender Antimalware Platform (1), Defender Security Intelligence Updates (2), Defender for Endpoint (4), Defender for Endpoint for Windows (1), Defender for IoT (20), Desktop Client for Mac (1), Diagnostics Troubleshooting Wizard (1), Directx (1), Dynamics (1), Dynamics 365 (71), Dynamics 365 BC On Premise (2), Dynamics 365 Business Central (13), Dynamics 365 Commerce (1), Dynamics 365 Customer Engagement (2), Dynamics 365 Customer Insights (2), Dynamics 365 Field Service (1), Dynamics 365 Unified Service Desk (1), Dynamics 365 for Finance (2), Dynamics 365 for Finance and Operations (6), Dynamics 365 on-premises (1), Dynamics AX (2), Dynamics CRM (4), Dynamics GP (7), Dynamics NAV (8), Edge (959), Endpoint Configuration Manager (1), Endpoint Protection (1), Enhanced Mitigation Experience Toolkit EMET (1), Entra Jira Single-Sign-On Plugin (1), Excel (175), Excel 2010 SP2 (1), Exchange (14), Exchange Server (148), Expression Design (1), FAST ESP (1), FSLogix (1), File Checksum Integrity Verifier (1), Forefront Endpoint Protection (6), Forefront Security for Exchange Server (1), Forefront Threat Management Gateway (1), Forefront Unified Access Gateway (12), FrontPage (1), GitHub Pull Requests and Issues Extension (1), Graph (1), Groove (1), HEIF Image Extension (2), HEVC Video Extensions (42), HoloLens 1 (1), Host Integration Server (2), Host Integration Server 2020 (1), Hub Device Client SDK for Azure IoT (1), Hyper-V (13), IIS (19), Identity Linux Broker (1), Identity Manager (1), Identity Model (1), Infopath (2), Internet Explorer (1171), Intune Company Portal (1), Intune Management Extension (2), Intune Portal (1), Intune for Android Mobile Application Management (1), JScript (1), Jarvis (1), Java SDK for Azure IoT (2), Jupyter Extension for Visual Studio Code (2), Kubernetes Tools (1), Log Analytics Agent (2), Lync (21), Lync Server (12), Lync for Mac (1), MPEG-2 Video Extension (1), MSRT (1), Mail Client (1), Malicious Software Removal Tool (2), Malware Protection Engine (15), Maven for Java Extension (1), Media Player (2), Microsoft Authentication Library (1), Microsoft Dynamics 365 (1), Microsoft Malware Protection Platform (1), Microsoft OLE DB Provider for DB2 V7 (1), Mono (1), Mono Framework (1), Network Watcher Agent Virtual Machine Extension for Linux (1), Nokia Asha 501 (1), NuGet (3), ODBC Driver (20), ODBC Driver for SQL Server (5), OLE DB (1), OLE DB Driver (29), OLE DB Driver for SQL Server (1), Office (472), Office 365 (4), Office 365 ProPlus (1), Office App (1), Office Compability Pack (1), Office Compatibility Pack (11), Office Excel (4), Office LTSC (4), Office Online Server (11), Office Picture Manager (1), Office Web Apps (10), Office Web Apps Server (8), Office for Mac 2011 (1), On-Prem Data Gateway (1), On-Premises Data Gateway (1), OneDrive (13), OneNote (7), Open Enclave SDK (3), Open Management Infrastructure (2), Open XML File Format Converter (1), Operations (2), Operations Management Suite Agent (1), Outlook (59), Outlook.com (1), Outlook Web Access (1), Outlook Web App (1), Package Manager Configurations (1), Paint 3D (6), PandocUpload (1), Passport-SAML (1), Photos (1), Power Apps (2), Power Automate (1), Power BI (1), PowerBI-Client JS SDK (1), PowerBI-client JS SDK (1), Power BI Report Server (6), Power Platform (3), PowerPoint (31), PowerPoint Viewer (1), PowerShell (2), PowerShell Core (1), PowerShell Editor Services (1), PowerShell Extension for Visual Studio Code (1), PowerShellGet (1), Powerpoint (1), Print 3D (1), Printer Metadata Troubleshooter Tool (1), Process Explorer (1), Project (4), Project Server (3), Publisher (16), Publisher 2003 (9), Python Extension for Visual Studio Code (1), Quantum Development Kit for Visual Studio Code (1), RMS Sharing for Mac (1), RTOS GUIX (3), Raw Image Extension (14), Remote Desktop (1), Remote Desktop Connection Client (1), Remote Desktop Connection Manager (1), Remote Desktop For Mac (1), Research JavaScript Cryptography Library (2), Rome SDK (2), SCS Add-on (1), SQL Server (116), SQL Server 2017 Reporting Services (1), SQL Server 2019 Reporting Services (1), SQL Server Backend for Django (1), SQL Server Management Studio (6), Security Essentials (9), Security Essentials Antimalware Engine (2), Send Customer Voice survey from Dynamics 365 (1), Send Customer Voice survey from Dynamics 365 App (1), Service Fabric (1), SharePoint (64), SharePoint Enterprise Server (132), SharePoint Foundation (62), SharePoint Server (211), SharePoint Services (1), Sharepoint (6), Silverlight (17), Skype (15), Skype Extension (1), Skype for Android (1), Skype for Business (15), Skype for Business Server (14), Skype for Consumer (1), Snip & Sketch (1), Snipping Tool (1), Software for Open Networking in the Cloud (1), Sterling Connect Direct (1), Surface Hub (1), Surface Pro (1), SysInternals Sysmon (1), Sysinternals Process Monitor (1), Sysinternals PsExec (1), System Center (1), System Center Endpoint Protection (8), System Center Operations Manager (10), System Center Virtual Machine Manager (1), Systems Management Server (1), Team Foundation Server (23), Teams (10), Teams Admin Center (1), Tech Companion (1), VBScript (1), VISIO (1), VP9 Video Extensions (7), Virtual PC (2), Visio (20), Visio Viewer (6), Visual C++ (1), Visual C++ Redistributable (1), Visual Studio (148), Visual Studio Code (45), Visual Studio Code Live Share Extension (1), Visual Studio Code Remote Containers Extension (1), Visual Studio Code WSL Extension (1), Visual Studio Community (1), Visual Studio Team Foundation Server (1), WMI Administrative Tools (1), Web Media Extensions (1), WebP Image Extension (1), Windows (5038), Windows 10 Update Assistant (2), Windows Admin Center (2), Windows Azure Sdk (1), Windows Defender (9), Windows Defender Antimalware Platform (2), Windows Embedded (1), Windows Essentials (1), Windows Host Compute (1), Windows Live Messenger (1), Windows Live Movie Maker (1), Windows Live OneCare (1), Windows Media Center (2), Windows Media Center TV Pack (1), Windows Media Encoder (1), Windows Media Player (7), Windows Modern Mail (1), Windows Movie Maker (2), Windows Phone (2), Windows Server (1), Windows Subsystem for Linux (1), Windows Sysmon (1), Windows Upgrade Assistant (1), Wireless Desktop 2000 (1), Wireless Display Adapter V2 (1), Wireless Keyboard (2), Word (93), Word 2003 (1), WordPad (1), Word Viewer (3), Works (1), XML Core Services (6), Xamarin.Forms (1), Xbox Gaming Services (1), Xbox Live (1), Xerte (1), YARP (2), Yammer (1), YourPhone App (1), az functionapp config appsettings delete (1), az functionapp config appsettings set (1), az logicapp config appsettings delete (1), az logicapp config appsettings set (1), az staticwebapp appsettings delete (1), az staticwebapp appsettings set (1), az webapp config appsettings delete (1), az webapp config appsettings set (1), msgraph-sdk-php (1), msgraph-sdk-php-core (1), typed-rest-client (1), workspace-tools (1)

Link to Vendor Website: https://www.microsoft.com/

Veröffentlicht	Base	Temp	Schwachstelle	Prod	Aus	Mas	EPSS	CTI	CVE
09.07.2024	7.5	7.2	Microsoft Windows MSHTML Platform Information Disclosure	Operating System	High	Official Fix	0.01649	0.19	CVE-2024-38112
09.07.2024	6.5	6.0	Microsoft Windows Layer-2 Bridge Network Driver Denial of Service	Operating System	Unproven	Official Fix	0.00056	0.13	CVE-2024-38105
09.07.2024	8.8	8.1	Microsoft Windows Fax Service Pufferüberlauf	Operating System	Unproven	Official Fix	0.00106	0.31	CVE-2024-38104
09.07.2024	6.5	6.0	Microsoft Windows Layer-2 Bridge Network Driver Information Disclosure	Operating System	Unproven	Official Fix	0.00056	0.13	CVE-2024-38102
09.07.2024	6.5	6.0	Microsoft Windows Layer-2 Bridge Network Driver Information Disclosure	Operating System	Unproven	Official Fix	0.00056	0.13	CVE-2024-38101
09.07.2024	7.8	7.1	Microsoft Windows File Explorer erweiterte Rechte	Operating System	Unproven	Official Fix	0.00043	0.09	CVE-2024-38100
09.07.2024	5.9	5.4	Microsoft Windows Remote Desktop Licensing Service schwache Authentisierung	Operating System	Unproven	Official Fix	0.00063	0.09	CVE-2024-38099
09.07.2024	7.5	6.8	Microsoft .NET/Visual Studio Denial of Service	Programming Tool Software	Unproven	Official Fix	0.00063	0.05	CVE-2024-38095
09.07.2024	7.2	6.7	Microsoft SharePoint Server erweiterte Rechte	Groupware Software	Proof-of-Concept	Official Fix	0.00092	0.10	CVE-2024-38094
09.07.2024	8.8	8.2	Microsoft Azure CycleCloud erweiterte Rechte	Cloud Software	Proof-of-Concept	Official Fix	0.00050	0.05	CVE-2024-38092
09.07.2024	7.5	6.8	Microsoft Windows WS-Discovery Denial of Service	Operating System	Unproven	Official Fix	0.00046	0.05	CVE-2024-38091
09.07.2024	9.3	8.7	Microsoft Defender for IoT erweiterte Rechte	Unbekannt	Unproven	Official Fix	0.00050	0.14	CVE-2024-38089
09.07.2024	8.8	7.7	Microsoft SQL Server Native Client OLE DB Provider Pufferüberlauf	Database Software	Unproven	Official Fix	0.00091	0.04	CVE-2024-38088
09.07.2024	8.8	7.7	Microsoft SQL Server Native Client OLE DB Provider Pufferüberlauf	Database Software	Unproven	Official Fix	0.00091	0.09	CVE-2024-38087
09.07.2024	6.4	5.9	Microsoft Azure Kinect SDK Local Privilege Escalation	Cloud Software	Unproven	Official Fix	0.00053	0.05	CVE-2024-38086
09.07.2024	7.8	7.1	Microsoft Windows Graphics Pufferüberlauf	Operating System	Unproven	Official Fix	0.00043	0.14	CVE-2024-38085
09.07.2024	7.6	6.6	Microsoft .NET/.NET Framework/Visual Studio erweiterte Rechte	Programming Tool Software	Unproven	Official Fix	0.00043	0.05	CVE-2024-38081
09.07.2024	7.8	7.4	Microsoft Windows Hyper-V Pufferüberlauf	Operating System	High	Official Fix	0.00051	0.15	CVE-2024-38080
09.07.2024	7.8	7.1	Microsoft Windows Graphics Pufferüberlauf	Operating System	Unproven	Official Fix	0.00043	0.14	CVE-2024-38079
09.07.2024	7.5	7.0	Microsoft Windows Xbox Wireless Adapter Pufferüberlauf	Operating System	Unproven	Official Fix	0.00053	0.05	CVE-2024-38078
09.07.2024	9.8	8.9	Microsoft Windows Remote Desktop Licensing Service Pufferüberlauf	Operating System	Unproven	Official Fix	0.00091	0.44	CVE-2024-38077
09.07.2024	9.8	8.9	Microsoft Windows Remote Desktop Licensing Service Pufferüberlauf	Operating System	Unproven	Official Fix	0.00091	0.14	CVE-2024-38076
09.07.2024	9.8	8.9	Microsoft Windows Remote Desktop Licensing Service Pufferüberlauf	Operating System	Unproven	Official Fix	0.00091	0.67	CVE-2024-38074
09.07.2024	7.5	6.8	Microsoft Windows Remote Desktop Licensing Service Information Disclosure	Operating System	Unproven	Official Fix	0.00046	0.26	CVE-2024-38073
09.07.2024	7.5	6.8	Microsoft Windows Remote Desktop Licensing Service Denial of Service	Operating System	Unproven	Official Fix	0.00046	0.04	CVE-2024-38072
09.07.2024	7.5	6.8	Microsoft Windows Remote Desktop Licensing Service Denial of Service	Operating System	Unproven	Official Fix	0.00063	0.22	CVE-2024-38071
09.07.2024	7.8	7.1	Microsoft Windows LockDown Policy erweiterte Rechte	Operating System	Unproven	Official Fix	0.00043	0.05	CVE-2024-38070
09.07.2024	7.0	6.4	Microsoft Windows Enroll Engine schwache Authentisierung	Operating System	Unproven	Official Fix	0.00043	0.17	CVE-2024-38069
09.07.2024	7.5	6.8	Microsoft Windows Online Certificate Status Protocol Denial of Service	Operating System	Unproven	Official Fix	0.00063	0.09	CVE-2024-38068
09.07.2024	7.5	6.8	Microsoft Windows Online Certificate Status Protocol Server Denial of Service	Operating System	Unproven	Official Fix	0.00063	0.09	CVE-2024-38067
09.07.2024	8.1	7.4	Microsoft Windows Win32k Pufferüberlauf	Operating System	Unproven	Official Fix	0.00054	0.00	CVE-2024-38066
09.07.2024	6.8	6.2	Microsoft Windows Secure Boot Pufferüberlauf	Operating System	Unproven	Official Fix	0.00051	0.13	CVE-2024-38065
09.07.2024	7.5	6.8	Microsoft Windows TCP/IP Information Disclosure	Operating System	Unproven	Official Fix	0.00137	0.05	CVE-2024-38064
09.07.2024	7.8	7.1	Microsoft Windows Kernel-Mode Driver Information Disclosure	Operating System	Unproven	Official Fix	0.00048	0.05	CVE-2024-38062
09.07.2024	7.5	6.8	Microsoft Windows DCOM erweiterte Rechte	Operating System	Unproven	Official Fix	0.00093	0.22	CVE-2024-38061
09.07.2024	8.8	8.1	Microsoft Windows Imaging Pufferüberlauf	Operating System	Unproven	Official Fix	0.00095	0.14	CVE-2024-38060
09.07.2024	7.8	7.1	Microsoft Windows Win32k Pufferüberlauf	Operating System	Unproven	Official Fix	0.00059	0.00	CVE-2024-38059
09.07.2024	6.8	6.2	Microsoft Windows BitLocker erweiterte Rechte	Operating System	Unproven	Official Fix	0.00051	0.14	CVE-2024-38058
09.07.2024	7.8	7.1	Microsoft Windows Kernel Streaming WOW Thunk Service Driver Information Disclosure	Operating System	Unproven	Official Fix	0.00048	0.13	CVE-2024-38057
09.07.2024	4.8	4.4	Microsoft Windows Codecs Library Information Disclosure	Operating System	Unproven	Official Fix	0.00048	0.04	CVE-2024-38056
09.07.2024	5.5	5.0	Microsoft Windows Codecs Library Information Disclosure	Operating System	Unproven	Official Fix	0.00048	0.09	CVE-2024-38055
09.07.2024	7.8	7.1	Microsoft Windows Kernel Streaming WOW Thunk Service Driver Pufferüberlauf	Operating System	Unproven	Official Fix	0.00043	0.13	CVE-2024-38054
09.07.2024	8.8	8.1	Microsoft Windows Layer-2 Bridge Network Driver Pufferüberlauf	Operating System	Unproven	Official Fix	0.00063	0.26	CVE-2024-38053
09.07.2024	7.8	7.1	Microsoft Windows Kernel Streaming WOW Thunk Service Driver Local Privilege Escalation	Operating System	Unproven	Official Fix	0.00048	0.09	CVE-2024-38052
09.07.2024	7.8	7.1	Microsoft Windows Graphics Pufferüberlauf	Operating System	Unproven	Official Fix	0.00050	0.10	CVE-2024-38051
09.07.2024	7.8	7.1	Microsoft Windows Workstation Service Pufferüberlauf	Operating System	Unproven	Official Fix	0.00043	0.09	CVE-2024-38050
09.07.2024	7.0	6.6	Microsoft Windows Distributed Transaction Coordinator erweiterte Rechte	Operating System	Unproven	Official Fix	0.00279	0.09	CVE-2024-38049
09.07.2024	6.5	6.0	Microsoft Windows Network Driver Interface Specification Information Disclosure	Operating System	Unproven	Official Fix	0.00056	0.04	CVE-2024-38048
09.07.2024	7.8	7.1	Microsoft Windows PowerShell Local Privilege Escalation	Operating System	Unproven	Official Fix	0.00048	0.00	CVE-2024-38047
09.07.2024	7.2	6.6	Microsoft Windows DHCP Server Service Privilege Escalation	Operating System	Unproven	Official Fix	0.00092	0.04	CVE-2024-38044

9950 weitere Einträge werden nicht mehr angezeigt

🔒 Login Required

You need to signup and login to see more of the remaining 9,950 results.

◂ ZurückÜbersichtWeiter ▸

Interested in the pricing of exploits?

See the underground prices here!