Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
External control of file name or path in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.
Improper neutralization of special elements used in a command ('command injection') in Visual Studio Code allows an unauthorized attacker to execute code locally.
Missing cryptographic step in Windows CryptoAPI allows an authorized attacker to perform tampering locally.
External control of file name or path in SQL Server allows an authorized attacker to elevate privileges locally.
Deserialization of untrusted data in SQL Server allows an authorized attacker to execute code over a network.
Deserialization of untrusted data in SQL Server allows an authorized attacker to execute code over a network.
Integer overflow or wraparound in Microsoft Defender allows an unauthorized attacker to execute code locally.
Integer underflow (wrap or wraparound) in Microsoft Defender allows an unauthorized attacker to execute code locally.
Improper authentication in Azure Spring Apps allows an authorized attacker to elevate privileges over a network.
Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code locally.
Use after free in Reliable Multicast Transport Driver (RMCAST) allows an unauthorized attacker to execute code over a network.
Use of uninitialized resource in Windows RDP allows an unauthorized attacker to disclose information over a network.
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an unauthorized attacker to execute code over an adjacent network.