The Common Vulnerabilities and Exposures (CVE) project, maintained by the MITRE Corporation, is a list of all standardized names for vulnerabilities and security exposures.
| ID | Description | Priority | Modified date |
|---|---|---|---|
| CVE-2019-1196 | A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka \'Chakra Scripting Engine Memory Corruption Vulnerability\'. This CVE ID is unique from CVE-2019-1131, CVE-2019-1139, CVE-2019-1140, CVE-2019-1141, CVE-2019-1195, CVE-2019-1197. | HIGH | Aug 19, 2019 |
| CVE-2019-1195 | A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka \'Chakra Scripting Engine Memory Corruption Vulnerability\'. This CVE ID is unique from CVE-2019-1131, CVE-2019-1139, CVE-2019-1140, CVE-2019-1141, CVE-2019-1196, CVE-2019-1197. | HIGH | Aug 19, 2019 |
| CVE-2019-1194 | A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka \'Scripting Engine Memory Corruption Vulnerability\'. This CVE ID is unique from CVE-2019-1133. | HIGH | Aug 20, 2019 |
| CVE-2019-1193 | A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka \'Microsoft Browser Memory Corruption Vulnerability\'. | HIGH | Aug 20, 2019 |
| CVE-2019-1192 | A security feature bypass vulnerability exists when Microsoft browsers improperly handle requests of different origins, aka \'Microsoft Browsers Security Feature Bypass Vulnerability\'. | MEDIUM | Aug 20, 2019 |
| CVE-2019-1191 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none | -- | Nov 7, 2023 |
| CVE-2019-1190 | An elevation of privilege vulnerability exists in the way that the Windows kernel image handles objects in memory.An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially crafted application.The security update addresses the vulnerability by ensuring the Windows kernel image properly handles objects in memory., aka \'Windows Image Elevation of Privilege Vulnerability\'. | HIGH | Aug 20, 2019 |
| CVE-2019-1189 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none | -- | Nov 7, 2023 |
| CVE-2019-1188 | A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka \'LNK Remote Code Execution Vulnerability\'. | HIGH | Aug 21, 2019 |
| CVE-2019-1187 | A denial of service vulnerability exists when the XmlLite runtime (XmlLite.dll) improperly parses XML input, aka \'XmlLite Runtime Denial of Service Vulnerability\'. | MEDIUM | Aug 21, 2019 |
| CVE-2019-1186 | An elevation of privilege vulnerability exists in the way that the wcmsvc.dll handles objects in memory, aka \'Windows Elevation of Privilege Vulnerability\'. This CVE ID is unique from CVE-2019-1173, CVE-2019-1174, CVE-2019-1175, CVE-2019-1177, CVE-2019-1178, CVE-2019-1179, CVE-2019-1180, CVE-2019-1184. | MEDIUM | Aug 19, 2019 |
| CVE-2019-1185 | An elevation of privilege vulnerability exists due to a stack corruption in Windows Subsystem for Linux, aka \'Windows Subsystem for Linux Elevation of Privilege Vulnerability\'. | MEDIUM | Aug 21, 2019 |
| CVE-2019-1184 | An elevation of privilege vulnerability exists when Windows Core Shell COM Server Registrar improperly handles COM calls, aka \'Windows Elevation of Privilege Vulnerability\'. This CVE ID is unique from CVE-2019-1173, CVE-2019-1174, CVE-2019-1175, CVE-2019-1177, CVE-2019-1178, CVE-2019-1179, CVE-2019-1180, CVE-2019-1186. | HIGH | Aug 19, 2019 |
| CVE-2019-1183 | A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka \'Windows VBScript Engine Remote Code Execution Vulnerability\'. | HIGH | Aug 21, 2019 |
| CVE-2019-1182 | A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka \'Remote Desktop Services Remote Code Execution Vulnerability\'. This CVE ID is unique from CVE-2019-1181, CVE-2019-1222, CVE-2019-1226. | High | Aug 19, 2019 |
| CVE-2019-1181 | A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka \'Remote Desktop Services Remote Code Execution Vulnerability\'. This CVE ID is unique from CVE-2019-1182, CVE-2019-1222, CVE-2019-1226. | High | Aug 19, 2019 |
| CVE-2019-1180 | An elevation of privilege vulnerability exists in the way that the wcmsvc.dll handles objects in memory, aka \'Windows Elevation of Privilege Vulnerability\'. This CVE ID is unique from CVE-2019-1173, CVE-2019-1174, CVE-2019-1175, CVE-2019-1177, CVE-2019-1178, CVE-2019-1179, CVE-2019-1184, CVE-2019-1186. | MEDIUM | Aug 19, 2019 |
| CVE-2019-1179 | An elevation of privilege vulnerability exists in the way that the unistore.dll handles objects in memory, aka \'Windows Elevation of Privilege Vulnerability\'. This CVE ID is unique from CVE-2019-1173, CVE-2019-1174, CVE-2019-1175, CVE-2019-1177, CVE-2019-1178, CVE-2019-1180, CVE-2019-1184, CVE-2019-1186. | MEDIUM | Aug 19, 2019 |
| CVE-2019-1178 | An elevation of privilege vulnerability exists in the way that the ssdpsrv.dll handles objects in memory, aka \'Windows Elevation of Privilege Vulnerability\'. This CVE ID is unique from CVE-2019-1173, CVE-2019-1174, CVE-2019-1175, CVE-2019-1177, CVE-2019-1179, CVE-2019-1180, CVE-2019-1184, CVE-2019-1186. | MEDIUM | Aug 19, 2019 |
| CVE-2019-1177 | An elevation of privilege vulnerability exists in the way that the rpcss.dll handles objects in memory, aka \'Windows Elevation of Privilege Vulnerability\'. This CVE ID is unique from CVE-2019-1173, CVE-2019-1174, CVE-2019-1175, CVE-2019-1178, CVE-2019-1179, CVE-2019-1180, CVE-2019-1184, CVE-2019-1186. | MEDIUM | Aug 19, 2019 |
| CVE-2019-1176 | An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory, aka \'DirectX Elevation of Privilege Vulnerability\'. | HIGH | Aug 21, 2019 |
| CVE-2019-1175 | An elevation of privilege vulnerability exists in the way that the psmsrv.dll handles objects in memory, aka \'Windows Elevation of Privilege Vulnerability\'. This CVE ID is unique from CVE-2019-1173, CVE-2019-1174, CVE-2019-1177, CVE-2019-1178, CVE-2019-1179, CVE-2019-1180, CVE-2019-1184, CVE-2019-1186. | MEDIUM | Aug 19, 2019 |
| CVE-2019-1174 | An elevation of privilege vulnerability exists in the way that the PsmServiceExtHost.dll handles objects in memory, aka \'Windows Elevation of Privilege Vulnerability\'. This CVE ID is unique from CVE-2019-1173, CVE-2019-1175, CVE-2019-1177, CVE-2019-1178, CVE-2019-1179, CVE-2019-1180, CVE-2019-1184, CVE-2019-1186. | MEDIUM | Aug 19, 2019 |
| CVE-2019-1173 | An elevation of privilege vulnerability exists in the way that the PsmServiceExtHost.dll handles objects in memory, aka \'Windows Elevation of Privilege Vulnerability\'. This CVE ID is unique from CVE-2019-1174, CVE-2019-1175, CVE-2019-1177, CVE-2019-1178, CVE-2019-1179, CVE-2019-1180, CVE-2019-1184, CVE-2019-1186. | MEDIUM | Aug 19, 2019 |
| CVE-2019-1172 | An information disclosure vulnerability exists in Azure Active Directory (AAD) Microsoft Account (MSA) during the login request session, aka \'Windows Information Disclosure Vulnerability\'. | MEDIUM | Aug 21, 2019 |
| CVE-2019-1171 | An information disclosure vulnerability exists in SymCrypt during the OAEP decryption stage, aka \'SymCrypt Information Disclosure Vulnerability\'. | LOW | Aug 21, 2019 |
| CVE-2019-1170 | An elevation of privilege vulnerability exists when reparse points are created by sandboxed processes allowing sandbox escape, aka \'Windows NTFS Elevation of Privilege Vulnerability\'. | HIGH | Aug 23, 2019 |
| CVE-2019-1169 | An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka \'Win32k Elevation of Privilege Vulnerability\'. | HIGH | Aug 21, 2019 |
| CVE-2019-1168 | An elevation of privilege exists in the p2pimsvc service where an attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges.To exploit this vulnerability, an attacker would first have to log on to the system, aka \'Microsoft Windows p2pimsvc Elevation of Privilege Vulnerability\'. | HIGH | Aug 21, 2019 |
| CVE-2019-1167 | A security feature bypass vulnerability exists in Windows Defender Application Control (WDAC) which could allow an attacker to bypass WDAC enforcement, aka \'Windows Defender Application Control Security Feature Bypass Vulnerability\'. | LOW | Jul 25, 2019 |
| CVE-2019-1166 | A tampering vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLM MIC (Message Integrity Check) protection, aka \'Windows NTLM Tampering Vulnerability\'. | MEDIUM | Oct 15, 2019 |
| CVE-2019-1165 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none | -- | Nov 7, 2023 |
| CVE-2019-1164 | An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka \'Windows Kernel Elevation of Privilege Vulnerability\'. This CVE ID is unique from CVE-2019-1159. | HIGH | Aug 21, 2019 |
| CVE-2019-1163 | A security feature bypass exists when Windows incorrectly validates CAB file signatures, aka \'Windows File Signature Security Feature Bypass Vulnerability\'. | MEDIUM | Aug 22, 2019 |
| CVE-2019-1162 | An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC).An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the local system, aka \'Windows ALPC Elevation of Privilege Vulnerability\'. | HIGH | Aug 22, 2019 |
| CVE-2019-1161 | An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka \'Microsoft Defender Elevation of Privilege Vulnerability\'. | MEDIUM | Aug 22, 2019 |
| CVE-2019-1160 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none | -- | Nov 7, 2023 |
| CVE-2019-1159 | An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka \'Windows Kernel Elevation of Privilege Vulnerability\'. This CVE ID is unique from CVE-2019-1164. | HIGH | Aug 19, 2019 |
| CVE-2019-1158 | An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka \'Windows Graphics Component Information Disclosure Vulnerability\'. This CVE ID is unique from CVE-2019-1143, CVE-2019-1154. | LOW | Aug 19, 2019 |
| CVE-2019-1157 | A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka \'Jet Database Engine Remote Code Execution Vulnerability\'. This CVE ID is unique from CVE-2019-1146, CVE-2019-1147, CVE-2019-1155, CVE-2019-1156. | HIGH | Aug 19, 2019 |
| CVE-2019-1156 | A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka \'Jet Database Engine Remote Code Execution Vulnerability\'. This CVE ID is unique from CVE-2019-1146, CVE-2019-1147, CVE-2019-1155, CVE-2019-1157. | HIGH | Aug 19, 2019 |
| CVE-2019-1155 | A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka \'Jet Database Engine Remote Code Execution Vulnerability\'. This CVE ID is unique from CVE-2019-1146, CVE-2019-1147, CVE-2019-1156, CVE-2019-1157. | HIGH | Aug 19, 2019 |
| CVE-2019-1154 | An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka \'Windows Graphics Component Information Disclosure Vulnerability\'. This CVE ID is unique from CVE-2019-1143, CVE-2019-1158. | LOW | Aug 19, 2019 |
| CVE-2019-1153 | An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory, aka \'Microsoft Graphics Component Information Disclosure Vulnerability\'. This CVE ID is unique from CVE-2019-1078, CVE-2019-1148. | LOW | Aug 19, 2019 |
| CVE-2019-1152 | A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka \'Microsoft Graphics Remote Code Execution Vulnerability\'. This CVE ID is unique from CVE-2019-1144, CVE-2019-1145, CVE-2019-1149, CVE-2019-1150, CVE-2019-1151. | HIGH | Aug 16, 2019 |
| CVE-2019-1151 | A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka \'Microsoft Graphics Remote Code Execution Vulnerability\'. This CVE ID is unique from CVE-2019-1144, CVE-2019-1145, CVE-2019-1149, CVE-2019-1150, CVE-2019-1152. | HIGH | Aug 16, 2019 |
| CVE-2019-1150 | A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka \'Microsoft Graphics Remote Code Execution Vulnerability\'. This CVE ID is unique from CVE-2019-1144, CVE-2019-1145, CVE-2019-1149, CVE-2019-1151, CVE-2019-1152. | HIGH | Aug 16, 2019 |
| CVE-2019-1149 | A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka \'Microsoft Graphics Remote Code Execution Vulnerability\'. This CVE ID is unique from CVE-2019-1144, CVE-2019-1145, CVE-2019-1150, CVE-2019-1151, CVE-2019-1152. | HIGH | Aug 19, 2019 |
| CVE-2019-1148 | An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory, aka \'Microsoft Graphics Component Information Disclosure Vulnerability\'. This CVE ID is unique from CVE-2019-1078, CVE-2019-1153. | LOW | Aug 19, 2019 |
| CVE-2019-1147 | A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka \'Jet Database Engine Remote Code Execution Vulnerability\'. This CVE ID is unique from CVE-2019-1146, CVE-2019-1155, CVE-2019-1156, CVE-2019-1157. | HIGH | Aug 19, 2019 |
