Microsoft Windows Luki w zabezpieczeniach

Oś czasu

Ostatni rok

Wersja

Server 20163027
Server 20192925
102828
10 18092792
Server 20122728

Przeciwdziałanie

Official Fix5515
Temporary Fix0
Workaround304
Unavailable39
Not Defined196

Wykorzystywanie

High154
Functional71
Proof-of-Concept1014
Unproven1853
Not Defined2962

Wektor dostępu

Not Defined0
Physical40
Local1702
Adjacent185
Network4127

Uwierzytelnianie

Not Defined0
High145
Low3583
None2326

Interakcja z użytkownikiem

Not Defined0
Required793
None5261

C3BM Index

Ostatni rok

CVSSv3 Base

≤10
≤20
≤38
≤4280
≤5539
≤61089
≤7913
≤81990
≤9956
≤10279

CVSSv3 Temp

≤10
≤20
≤326
≤4337
≤5872
≤6931
≤71836
≤81494
≤9419
≤10139

VulDB

≤10
≤21
≤372
≤4426
≤5678
≤61017
≤71131
≤81424
≤91010
≤10295

NVD

≤10
≤20
≤35
≤418
≤5149
≤6432
≤7261
≤81205
≤9259
≤1056

CNA

≤11
≤20
≤31
≤44
≤527
≤6114
≤7253
≤8539
≤9203
≤1036

Sprzedawca

≤10
≤20
≤36
≤422
≤5287
≤6533
≤7678
≤81667
≤9401
≤1080

Research

≤10
≤20
≤30
≤40
≤50
≤61
≤70
≤81
≤91
≤100

Exploit 0-day

<1k8
<2k4
<5k23
<10k121
<25k834
<50k2144
<100k2259
≥100k661

Wykorzystaj dzisiaj

<1k2218
<2k213
<5k733
<10k1162
<25k1668
<50k50
<100k10
≥100k0

Wykorzystaj wielkość rynku

Ostatni rok

🔴 CTI Zajęcia

Affected Versions (161): 1.0, 1.1, 1.1.352, 1.2, 2.1, 2.6, 3.1.4000.1823, 3.11, 4.0, 4.0 SP1, 4.0 SP2, 4.0 SP3, 4.0 SP5, 4.0 SP6, 4.1, 5, 5.0, 5.1, 6.0, 6.0.2900.218, 6.00.2900.5512, 6.1, 6.1.76, 6.2, 6.3, 6.4, 7, 7 SP1, 7 SP 1, 7.0, 7.1, 7.5, 8, 8.0, 8.00.00.4477, 8.1, 8.5, 8.5.1, 9, 9.0, 9.1, 9.2, 9.3, 9.4, 9.5, 10, 10 20H2, 10 21H1, 10 21H2, 10 22H2, 10 1511, 10 1606, 10 1607, 10 1703, 10 1709, 10 1803, 10 1809, 10 1903, 10 1909, 10 2004, 10 Mobile, 10 Version 1809 for 32-bit Systems, 10.00.00.4036, 11, 11 21H1, 11 21H2, 11 22H2, 11 23H2, 11.0.5721.523, 11.0.5721.526, 11.0.5721.5145, 12, 64-bit SP2, 95, 98, 98 SP1, 98SE, 1122 H2, 1511, 1999, 2000, 2000 SP1, 2000 SP2, 2000 SP3, 2000 SP4, 2003, 2003 SP2, 2005, 2008 R2 SP1, 2008 SP2, 2009, 2011, 2012, 2012 R2, 2016, CE, CE 3.0.9348, ME, Microsoft Office, Microsoft Office 2019, Microsoft Office LTSC, NT, NT 3.1, NT 3.5, NT 3.51, NT 3.51 SP4, NT 4.0, NT 4.0 Beta, NT 4.0 SP1, NT 4.0 SP2, NT 4.0 SP3, NT 4.0 SP4, NT 4.0 SP5, NT 4.0 SP6a, PowerShell 7.2, PowerShell 7.3, R2, RT, RT 8.1, RT8.1, Remote Desktop client, SP3, Server 20H2, Server 1709, Server 1803, Server 1903, Server 1909, Server 1930, Server 2003, Server 2003 R2 SP1, Server 2003 R2 SP2, Server 2003 SP1, Server 2003 SP2, Server 2004, Server 2008, Server 2008 R2, Server 2008 R2 SP1, Server2008 R2 SP1, Server 2008 R2 SP2, Server 2008 SP2, Server 2008 SP2, Server 2012, Server2012, Server 2012 R2, Server 2013, Server 2016, Server 2018 R2 SP1, Server 2018 SP2, Server 2019, Server 2022, Server 2022 23H2, Server 2022 Azure Edition Core Hotpatch, Server 2022 Datacenter Azure Edition, Subsystem, Vista, Vista SP1, Vista SP2, XP, XP SP1, XP SP2, XP SP3

Link to Product Website: https://www.microsoft.com/en-us/windows

Typ oprogramowania: Operating System

OpublikowanoBaseTempSłaby punkt0dayDzisiajWykPrzCTICVE
2024-03-274.34.1Microsoft Windows Unicode Zalgo denial of service$25k-$100k$0-$5kProof-of-ConceptNot Defined0.15CVE-2017-20190
2024-03-126.55.7Microsoft Windows Standards-Based Storage Management Service denial of service$25k-$100k$5k-$25kUnprovenOfficial Fix0.00CVE-2024-26197
2024-03-125.95.2Microsoft Windows Compressed Folder nieznana luka$25k-$100k$5k-$25kUnprovenOfficial Fix0.03CVE-2024-26185
2024-03-127.86.8Microsoft Windows Composite Image File System Local Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.03CVE-2024-26170
2024-03-127.86.8Microsoft Windows Error Reporting Service Local Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.05CVE-2024-26169
2024-03-127.86.8Microsoft Windows NTFS Local Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.09CVE-2024-21446
2024-03-127.06.1Microsoft Windows USB Print Driver Local Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.00CVE-2024-21445
2024-03-127.86.8Microsoft Windows USB Print Driver Local Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.05CVE-2024-21442
2024-03-127.06.1Microsoft Windows Telephony Server Local Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.04CVE-2024-21439
2024-03-127.86.8Microsoft Windows Graphics Local Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.04CVE-2024-21437
2024-03-127.86.8Microsoft Windows Installer Local Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.03CVE-2024-21436
2024-03-127.06.1Microsoft Windows Print Spooler Local Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.06CVE-2024-21433
2024-03-127.06.1Microsoft Windows Update Stack Local Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.04CVE-2024-21432
2024-03-127.86.8Microsoft Windows Hypervisor-Protected Code Integrity Local Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.07CVE-2024-21431
2024-03-127.56.5Microsoft Windows Kerberos Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.00CVE-2024-21427
2024-03-125.54.8Microsoft Windows Hyper-V denial of service$5k-$25k$0-$5kUnprovenOfficial Fix0.02CVE-2024-21408
2024-03-127.86.8Microsoft Windows Kernel Local Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.02CVE-2024-26182
2024-03-125.54.8Microsoft Windows Kernel denial of service$5k-$25k$0-$5kUnprovenOfficial Fix0.04CVE-2024-26181
2024-03-127.86.8Microsoft Windows Kernel Local Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.02CVE-2024-26178
2024-03-127.86.8Microsoft Windows Kernel Local Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.03CVE-2024-26176
2024-03-127.86.8Microsoft Windows Kernel Local Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.03CVE-2024-26173
2024-03-124.43.8Microsoft Windows Cloud Files Mini Filter Driver information disclosure$5k-$25k$0-$5kUnprovenOfficial Fix0.02CVE-2024-26160
2024-03-127.66.6Microsoft Windows Kernel Local Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.05CVE-2024-21443
2024-03-124.43.8Microsoft Windows Kernel information disclosure$5k-$25k$0-$5kUnprovenOfficial Fix0.00CVE-2024-26177
2024-03-124.43.8Microsoft Windows Kernel information disclosure$5k-$25k$0-$5kUnprovenOfficial Fix0.04CVE-2024-26174
2024-03-128.87.7Microsoft Windows OLE Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.05CVE-2024-21435
2024-03-125.65.1Microsoft Windows USB Attached SCSI Remote Code Execution$25k-$100k$5k-$25kProof-of-ConceptOfficial Fix0.04CVE-2024-21430
2024-03-127.56.5Microsoft Windows USB Hub Driver Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.06CVE-2024-21429
2024-03-128.17.1Microsoft Windows Hyper-V Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.07CVE-2024-21407
2024-03-127.56.5Microsoft Windows QUIC denial of service$25k-$100k$5k-$25kUnprovenOfficial Fix0.03CVE-2024-26190
2024-03-127.56.5Microsoft Windows AllJoyn API denial of service$25k-$100k$5k-$25kUnprovenOfficial Fix0.04CVE-2024-21438
2024-03-125.54.8Microsoft Windows Defender Antimalware Platform denial of service$5k-$25k$0-$5kUnprovenOfficial Fix0.09CVE-2024-20671
2024-03-128.87.7Microsoft Windows ODBC Driver Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.03CVE-2024-26162
2024-03-128.87.7Microsoft Windows ODBC Driver Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.00CVE-2024-26159
2024-03-128.87.7Microsoft Windows ODBC Driver Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.00CVE-2024-21451
2024-03-128.87.7Microsoft Windows ODBC Driver Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.03CVE-2024-21440
2024-03-127.86.8Microsoft Windows SCSI Class System File Local Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.00CVE-2024-21434
2024-03-128.87.7Microsoft Windows WDAC OLE DB Provider for SQL Server Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.03CVE-2024-26166
2024-03-128.87.7Microsoft Windows WDAC OLE DB Provider for SQL Server Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.03CVE-2024-26161
2024-03-128.87.7Microsoft Windows WDAC OLE DB Provider for SQL Server Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.16CVE-2024-21450
2024-03-128.87.7Microsoft Windows WDAC OLE DB Provider for SQL Server Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.00CVE-2024-21444
2024-03-128.87.7Microsoft Windows WDAC OLE DB Provider for SQL Server Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.04CVE-2024-21441
2024-02-243.33.0Microsoft Windows Defender privilege escalation$5k-$25k$0-$5kProof-of-ConceptNot Defined0.03
2024-02-138.88.1Microsoft Windows WDAC OLE DB Provider for SQL Server Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.03CVE-2024-21420
2024-02-137.56.9Microsoft Windows Internet Shortcut File Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.00CVE-2024-21412
2024-02-136.86.2Microsoft Windows Printing Service nieznana luka$25k-$100k$5k-$25kUnprovenOfficial Fix0.03CVE-2024-21406
2024-02-137.26.5Microsoft Windows Message Queuing Privilege Escalation$25k-$100k$5k-$25kUnprovenOfficial Fix0.00CVE-2024-21405
2024-02-138.88.1Microsoft Windows WDAC OLE DB Provider for SQL Server Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.04CVE-2024-21391
2024-02-135.75.4Microsoft Windows DNS information disclosure$5k-$25k$0-$5kUnprovenOfficial Fix0.02CVE-2024-21377
2024-02-138.88.1Microsoft Windows WDAC OLE DB Provider for SQL Server Remote Code Execution$25k-$100k$5k-$25kUnprovenOfficial Fix0.00CVE-2024-21375

6004 więcej wpisów nie jest pokazywanych

🔒 Login Required

You need to signup and login to see more of the remaining 6,004 results.

więcej wpisów autorstwa Microsoft

PoprzedniPrzeglądKolejny

Do you want to use VulDB in your project?

Use the official API to access entries easily!