This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/o:microsoft:windows_8:-
Detail
VendorMicrosoftFirst view 2013-03-29
ProductWindows 8Last view2018-11-15
Version-TypeOs
Edition 
Language 
Update 
 
CPE Productcpe:/o:microsoft:windows_8

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
4.62018-11-15CVE-2018-16160LocalLowNone Requ...
7.22018-01-25CVE-2017-3762LocalLowNone Requ...
6.92016-01-13CVE-2016-0018LocalMediumNone Requ...
7.22016-01-13CVE-2016-0016LocalLowNone Requ...
9.32016-01-13CVE-2016-0015NetworkMediumNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
7.22016-01-13CVE-2016-0014LocalLowNone Requ...
4.32016-01-13CVE-2016-0008NetworkMediumNone Requ...
6.92016-01-13CVE-2016-0007LocalMediumNone Requ...
6.92016-01-13CVE-2016-0006LocalMediumNone Requ...
7.22015-12-09CVE-2015-6174LocalLowNone Requ...
7.22015-12-09CVE-2015-6173LocalLowNone Requ...
7.22015-12-09CVE-2015-6171LocalLowNone Requ...
7.22015-12-09CVE-2015-6133LocalLowNone Requ...
7.22015-12-09CVE-2015-6132LocalLowNone Requ...
9.32015-12-09CVE-2015-6131NetworkMediumNone Requ...
4.32015-12-09CVE-2015-6127NetworkMediumNone Requ...
7.22015-12-09CVE-2015-6126LocalLowNone Requ...
9.32015-12-09CVE-2015-6108NetworkMediumNone Requ...
9.32015-12-09CVE-2015-6107NetworkMediumNone Requ...
2.12015-11-11CVE-2015-6113LocalLowNone Requ...
5.82015-11-11CVE-2015-6112NetworkMediumNone Requ...
6.82015-11-11CVE-2015-6111NetworkLowRequires ...
9.32015-11-11CVE-2015-6104NetworkMediumNone Requ...
9.32015-11-11CVE-2015-6103NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
28% (56)CWE-264Permissions, Privileges, and Access Controls
14% (28)CWE-20Improper Input Validation
13% (27)CWE-200Information Exposure
9% (18)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
8% (16)CWE-94Failure to Control Generation of Code ('Code Injection')
Hide | Show 16 More...
%idName
4% (9)CWE-416Use After Free
2% (5)CWE-426Untrusted Search Path
2% (5)CWE-310Cryptographic Issues
2% (5)CWE-254Security Features
2% (4)CWE-399Resource Management Errors
2% (4)CWE-19Data Handling
1% (3)CWE-476NULL Pointer Dereference
1% (3)CWE-190Integer Overflow or Wraparound
1% (2)CWE-287Improper Authentication
1% (2)CWE-284Access Control (Authorization) Issues
1% (2)CWE-255Credentials Management
0% (1)CWE-798Use of Hard-coded Credentials
0% (1)CWE-415Double Free
0% (1)CWE-362Race Condition
0% (1)CWE-129Improper Validation of Array Index
0% (1)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:28623HTTP.sys Remote code execution vulnerability - CVE-2015-1635 (MS15-034)
oval:org.mitre.oval:def:29118Microsoft Windows Kernel use after free vulnerability – CVE-2015-1720 (MS15-061)
oval:org.mitre.oval:def:28201Microsoft Windows Kernel Brush Object use after free vulnerability - CVE-2015...
oval:org.mitre.oval:def:28664Graphics component information disclosure vulnerability - CVE-2015-0002 (MS15...
oval:org.mitre.oval:def:18722Graphics Device Interface Integer Overflow Vulnerability (CVE-2013-3940) - MS...
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:26341Windows installer repair vulnerability - CVE-2014-1814 (MS14-049)
oval:org.mitre.oval:def:29001Microsoft windows kernel memory disclosure vulnerability - CVE-2015-1676 (MS1...
oval:org.mitre.oval:def:28743Win32k information disclosure vulnerability - CVE-2015-2367 (MS15-073)
oval:org.mitre.oval:def:29332ATMFD.DLL Memory corruption vulnerability - CVE-2015-2387 (MS15-077)
oval:org.mitre.oval:def:29156Win32k elevation of privilege vulnerability - CVE-2015-2365 (MS15-073)
oval:org.mitre.oval:def:26746Alows man-in-the-middle attackers to spoof servers and read encrypted domain ...
oval:org.mitre.oval:def:28762Microsoft schannel remote code execution vulnerability - CVE-2015-0003 (MS15-...
oval:org.mitre.oval:def:28634Windows Error Reporting security feature bypass vulnerability - CVE-2015-0001...
oval:org.mitre.oval:def:28831NtCreateTransactionManager type confusion vulnerability - CVE-2015-1643 (MS15...
oval:org.mitre.oval:def:27743WebDAV elevation of privilege vulnerability - CVE-2015-0011 (MS15-008)
oval:org.mitre.oval:def:22633Win32k Information Disclosure Vulnerability - CVE-2014-0323 (MS14-015)
oval:org.mitre.oval:def:24903Vulnerability in TCP Protocol could allow denial of service - CVE-2014-1811 (...
oval:org.mitre.oval:def:28330Microsoft user profile service elevation of privilege vulnerability - CVE-201...
oval:org.mitre.oval:def:22326Vulnerability in Microsoft XML Core Services could allow information disclosu...
oval:org.mitre.oval:def:29392Remote Desktop Protocol (RDP) remote code execution vulnerability - CVE-2015-...
oval:org.mitre.oval:def:28847Remote desktop protocol (RDP) denial of service vulnerability - CVE-2015-0079...
oval:org.mitre.oval:def:28770Adobe font driver remote code execution vulnerability - CVE-2015-0090 (MS15-021)
oval:org.mitre.oval:def:28517Windows Journal remote code execution vulnerability - CVE-2015-1695 (MS15-045)
oval:org.mitre.oval:def:28710Windows Journal remote code execution vulnerability - CVE-2015-1696 (MS15-045)
oval:org.mitre.oval:def:28689Win32k elevation of privilege vulnerability - CVE-2015-0057 (MS15-010)

SAINT Exploits

DescriptionLink
Windows OLE Automation Array command executionMore info here
Windows Media Center command executionMore info here
Windows OLE Package Manager CPackage::DoVerb() INF File Download VulnerabilityMore info here

ExploitDB Exploits

idDescription
35236MS14-064 Microsoft Windows OLE Package Manager Code Execution
35235MS14-064 Microsoft Windows OLE Package Manager Code Execution Through Python
35230Internet Explorer < 11 - OLE Automation Array Remote Code Execution (MSF)
35229Internet Explorer <11 - OLE Automation Array Remote Code Execution
35216MS Office 2007 and 2010 - OLE Arbitrary Command Execution
Hide | Show 5 More...
idDescription
35101Windows TrackPopupMenu Win32k NULL Pointer Dereference
35055Windows OLE - Remote Code Execution "Sandworm" Exploit (MS14-060)
35020MS14-060 Microsoft Windows OLE Package Manager Code Execution
35019Windows OLE Package Manager SandWorm Exploit
30397Windows Kernel win32k.sys - Integer Overflow (MS13-101)

Information Assurance Vulnerability Management (IAVM)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2015-B-0112Microsoft Media Center Remote Code Execution Vulnerability (MS15-100)
Severity : Category II - VMSKEY : V0061373
2015-A-0212Multiple Vulnerabilities in Microsoft Graphics Component (MS15-097)
Severity : Category II - VMSKEY : V0061385
2015-A-0215Multiple Vulnerabilities in Microsoft Windows Task Management (MS15-102)
Severity : Category II - VMSKEY : V0061391
2015-A-0216Multiple Vulnerabilities in Microsoft Windows Journal (MS15-098)
Severity : Category II - VMSKEY : V0061393
2015-B-0096Microsoft WebDAV Information Disclosure Vulnerability (MS15-089)
Severity : Category II - VMSKEY : V0061285
Hide | Show 20 More...
idDescription
2015-A-0188Cumulative Security Update for Microsoft Internet Explorer (MS15-079)
Severity : Category I - VMSKEY : V0061297
2015-A-0190Multiple Vulnerabilities in Microsoft Remote Desktop Protocol (RDP) (MS15-082)
Severity : Category II - VMSKEY : V0061299
2015-A-0192Microsoft Windows Mount Manager Privilege Escalation Vulnerability (MS15-085)
Severity : Category I - VMSKEY : V0061303
2015-A-0193Multiple Privilege Escalation Vulnerabilities in Microsoft Windows (MS15-090)
Severity : Category II - VMSKEY : V0061305
2015-A-0194Multiple Vulnerabilities in Microsoft Office (MS15-081)
Severity : Category II - VMSKEY : V0061307
2015-A-0196Multiple Vulnerabilities in Microsoft Graphics Component (MS15-080)
Severity : Category II - VMSKEY : V0061311
2015-A-0197Microsoft Command Line Parameter Information Disclosure Vulnerability (MS15-088)
Severity : Category II - VMSKEY : V0061313
2015-A-0165Microsoft Remote Procedure Call (RPC) Privilege Escalation Vulnerability (MS1...
Severity : Category II - VMSKEY : V0061093
2015-A-0164Microsoft Windows Installer Privilege Escalation Vulnerability (MS15-074)
Severity : Category II - VMSKEY : V0061095
2015-A-0162Multiple Vulnerabilities in Microsoft Windows Kernel-Mode Driver (MS15-073)
Severity : Category II - VMSKEY : V0061097
2015-A-0169Multiple Vulnerabilities in Microsoft OLE (MS15-075)
Severity : Category II - VMSKEY : V0061103
2015-A-0168Microsoft Graphics Component Privilege Escalation Vulnerability (MS15-072)
Severity : Category II - VMSKEY : V0061105
2015-A-0170Microsoft Remote Desktop Protocol Vulnerability (MS15-067)
Severity : Category I - VMSKEY : V0061107
2015-A-0125Microsoft Common Controls Could Allow Remote Code Execution Vulnerability (MS...
Severity : Category II - VMSKEY : V0060943
2015-A-0107Microsoft Service Control Manager Privilege Escalation Vulnerability (MS15-050)
Severity : Category II - VMSKEY : V0060651
2015-A-0108Multiple Vulnerabilities in Microsoft Windows Kernel-Mode Driver (MS15-051)
Severity : Category II - VMSKEY : V0060653
2015-A-0111Microsoft SChannel Information Disclosure Vulnerability (MS15-055)
Severity : Category I - VMSKEY : V0060659
2015-A-0091Multiple Vulnerabilities in Microsoft Windows (MS15-038)
Severity : Category II - VMSKEY : V0059897
2015-A-0092Microsoft Windows HTTP stack Remote Code Execution Vulnerability (MS15-034)
Severity : Category I - VMSKEY : V0059899
2015-A-0048Multiple Vulnerabilities in Windows Kernel (MS15-025)
Severity : Category II - VMSKEY : V0058995

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2019-05-30Microsoft Windows SChannel CertificateVerify buffer overflow attempt
RuleID : 49977 - Type : OS-WINDOWS - Revision : 1
2019-05-30Microsoft Windows SChannel CertificateVerify buffer overflow attempt
RuleID : 49976 - Type : OS-WINDOWS - Revision : 1
2019-05-30Microsoft Windows SChannel CertificateVerify buffer overflow attempt
RuleID : 49975 - Type : OS-WINDOWS - Revision : 1
2019-05-30Microsoft Windows SChannel CertificateVerify buffer overflow attempt
RuleID : 49974 - Type : OS-WINDOWS - Revision : 1
2019-05-30Microsoft Windows SChannel CertificateVerify buffer overflow attempt
RuleID : 49973 - Type : OS-WINDOWS - Revision : 1
Hide | Show 20 More...
DateDescription
2019-05-30Microsoft Windows SChannel CertificateVerify buffer overflow attempt
RuleID : 49972 - Type : OS-WINDOWS - Revision : 1
2019-05-30Microsoft Windows SChannel CertificateVerify buffer overflow attempt
RuleID : 49971 - Type : OS-WINDOWS - Revision : 1
2019-05-30Microsoft Windows SChannel CertificateVerify buffer overflow attempt
RuleID : 49970 - Type : OS-WINDOWS - Revision : 1
2019-05-30Microsoft Windows SChannel CertificateVerify buffer overflow attempt
RuleID : 49969 - Type : OS-WINDOWS - Revision : 1
2019-04-13Microsoft Wordpad embedded BMP overflow attempt
RuleID : 49428 - Type : FILE-OTHER - Revision : 1
2019-04-13Microsoft Wordpad embedded BMP overflow attempt
RuleID : 49427 - Type : FILE-OTHER - Revision : 1
2018-09-11CTSWebProxy ActiveX privilege escalation attempt
RuleID : 47462 - Type : BROWSER-PLUGINS - Revision : 2
2018-09-11CTSWebProxy ActiveX privilege escalation attempt
RuleID : 47461 - Type : BROWSER-PLUGINS - Revision : 2
2017-08-31Microsoft Office mqrt.dll dll-load exploit attempt
RuleID : 43805 - Type : FILE-OFFICE - Revision : 2
2017-08-31Microsoft Office mqrt.dll dll-load exploit attempt
RuleID : 43804 - Type : FILE-OFFICE - Revision : 2
2017-08-31Microsoft Office mqrt.dll dll-load exploit attempt
RuleID : 43803 - Type : FILE-OFFICE - Revision : 2
2017-08-31Microsoft Office mqrt.dll dll-load exploit attempt
RuleID : 43802 - Type : FILE-OFFICE - Revision : 2
2017-06-16Microsoft Office mqrt.dll dll-load exploit attempt
RuleID : 42864 - Type : FILE-OFFICE - Revision : 3
2017-06-16Microsoft Office mqrt.dll dll-load exploit attempt
RuleID : 42863 - Type : FILE-OFFICE - Revision : 3
2017-05-16Microsoft Office mqrt.dll dll-load exploit attempt
RuleID : 42198 - Type : FILE-OFFICE - Revision : 3
2017-05-16Microsoft Office mqrt.dll dll-load exploit attempt
RuleID : 42197 - Type : FILE-OFFICE - Revision : 3
2017-01-04Microsoft Office ole object external file loading attempt
RuleID : 40885 - Type : FILE-OTHER - Revision : 1
2017-01-04Microsoft Office ole object external file loading attempt
RuleID : 40884 - Type : FILE-OTHER - Revision : 1
2016-06-07Microsoft Windows Media Center link file code execution attempt
RuleID : 38779 - Type : FILE-OTHER - Revision : 4
2016-06-07Microsoft Windows Media Center link file code execution attempt
RuleID : 38778 - Type : FILE-OTHER - Revision : 4

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2016-01-13Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms16-005.nasl - Type : ACT_GATHER_INFO
2016-01-13Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms16-007.nasl - Type : ACT_GATHER_INFO
2016-01-12Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms16-008.nasl - Type : ACT_GATHER_INFO
2015-12-08Name : A multimedia application framework installed on the remote Mac OS X host is a...
File : macosx_ms15-128.nasl - Type : ACT_GATHER_INFO
2015-12-08Name : The remote host is affected by multiple remote code execution vulnerabilities.
File : smb_nt_ms15-128.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2015-12-08Name : The remote Windows host is affected by multiple remote code execution vulnera...
File : smb_nt_ms15-132.nasl - Type : ACT_GATHER_INFO
2015-12-08Name : The remote Windows host is affected by an elevation of privilege vulnerability.
File : smb_nt_ms15-133.nasl - Type : ACT_GATHER_INFO
2015-12-08Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms15-134.nasl - Type : ACT_GATHER_INFO
2015-12-08Name : The remote Windows host is affected by multiple elevation of privilege vulner...
File : smb_nt_ms15-135.nasl - Type : ACT_GATHER_INFO
2015-11-10Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms15-115.nasl - Type : ACT_GATHER_INFO
2015-11-10Name : The remote Windows host is affected by an elevation of privilege vulnerability.
File : smb_nt_ms15-119.nasl - Type : ACT_GATHER_INFO
2015-11-10Name : The remote host is affected by a denial of service vulnerability.
File : smb_nt_ms15-120.nasl - Type : ACT_GATHER_INFO
2015-11-10Name : The remote Windows host is affected by a spoofing vulnerability.
File : smb_nt_ms15-121.nasl - Type : ACT_GATHER_INFO
2015-11-10Name : The remote Windows host is affected by a security feature bypass vulnerability.
File : smb_nt_ms15-122.nasl - Type : ACT_GATHER_INFO
2015-10-19Name : The remote printer is affected by a security bypass vulnerability known as FR...
File : lexmark_printer_TE701.nasl - Type : ACT_GATHER_INFO
2015-10-13Name : The remote host is affected by multiple remote code execution vulnerabilities.
File : smb_nt_ms15-109.nasl - Type : ACT_GATHER_INFO
2015-10-13Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms15-111.nasl - Type : ACT_GATHER_INFO
2015-09-10Name : The remote Windows host is affected by a remote code execution vulnerability.
File : smb_nt_ms15-100.nasl - Type : ACT_GATHER_INFO
2015-09-09Name : The remote host is affected by multiple vulnerabilities.
File : smb_nt_ms15-097.nasl - Type : ACT_GATHER_INFO
2015-09-09Name : The remote host is affected by multiple vulnerabilities.
File : smb_nt_ms15-098.nasl - Type : ACT_GATHER_INFO
2015-09-08Name : The remote Windows host is affected by multiple elevation of privilege vulner...
File : smb_nt_ms15-102.nasl - Type : ACT_GATHER_INFO
2015-08-12Name : A multimedia application framework installed on the remote Mac OS X host is a...
File : macosx_ms15-080.nasl - Type : ACT_GATHER_INFO
2015-08-12Name : The remote host is affected by multiple vulnerabilities.
File : smb_nt_ms15-080.nasl - Type : ACT_GATHER_INFO
2015-08-12Name : The remote Windows host is affected by multiple remote code execution vulnera...
File : smb_nt_ms15-081.nasl - Type : ACT_GATHER_INFO
2015-08-11Name : The remote host has a web browser installed that is affected by multiple vuln...
File : smb_nt_ms15-079.nasl - Type : ACT_GATHER_INFO