Summary
| Detail | |||
|---|---|---|---|
| Vendor | Microsoft | First view | 2019-05-16 |
| Product | Windows 10 | Last view | 2020-12-10 |
| Version | 1903 | Type | Os |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:o:microsoft:windows_10 | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 7.8 | 2020-12-10 | CVE-2020-17103 | , aka 'Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-17134, CVE-2020-17136. |
| 5.5 | 2020-12-10 | CVE-2020-17098 | , aka 'Windows GDI+ Information Disclosure Vulnerability'. |
| 7.8 | 2020-12-10 | CVE-2020-17097 | , aka 'Windows Digital Media Receiver Elevation of Privilege Vulnerability'. |
| 8.8 | 2020-12-10 | CVE-2020-17096 | , aka 'Windows NTFS Remote Code Execution Vulnerability'. |
| 5.5 | 2020-12-10 | CVE-2020-17094 | , aka 'Windows Error Reporting Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-17138. |
| 7.8 | 2020-12-10 | CVE-2020-17092 | , aka 'Windows Network Connections Service Elevation of Privilege Vulnerability'. |
| 7.8 | 2020-12-10 | CVE-2020-16964 | , aka 'Windows Backup Engine Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-16958, CVE-2020-16959, CVE-2020-16960, CVE-2020-16961, CVE-2020-16962, CVE-2020-16963. |
| 7.8 | 2020-12-10 | CVE-2020-16963 | , aka 'Windows Backup Engine Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-16958, CVE-2020-16959, CVE-2020-16960, CVE-2020-16961, CVE-2020-16962, CVE-2020-16964. |
| 7.8 | 2020-12-10 | CVE-2020-16962 | , aka 'Windows Backup Engine Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-16958, CVE-2020-16959, CVE-2020-16960, CVE-2020-16961, CVE-2020-16963, CVE-2020-16964. |
| 7.8 | 2020-12-10 | CVE-2020-16961 | , aka 'Windows Backup Engine Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-16958, CVE-2020-16959, CVE-2020-16960, CVE-2020-16962, CVE-2020-16963, CVE-2020-16964. |
| 7.8 | 2020-12-10 | CVE-2020-16960 | , aka 'Windows Backup Engine Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-16958, CVE-2020-16959, CVE-2020-16961, CVE-2020-16962, CVE-2020-16963, CVE-2020-16964. |
| 7.8 | 2020-12-10 | CVE-2020-16959 | , aka 'Windows Backup Engine Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-16958, CVE-2020-16960, CVE-2020-16961, CVE-2020-16962, CVE-2020-16963, CVE-2020-16964. |
| 7.8 | 2020-12-10 | CVE-2020-16958 | , aka 'Windows Backup Engine Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-16959, CVE-2020-16960, CVE-2020-16961, CVE-2020-16962, CVE-2020-16963, CVE-2020-16964. |
| 5.5 | 2020-11-11 | CVE-2020-17113 | Windows Camera Codec Information Disclosure Vulnerability |
| 9.8 | 2020-11-11 | CVE-2020-17090 | Microsoft Defender for Endpoint Security Feature Bypass Vulnerability |
| 7.8 | 2020-11-11 | CVE-2020-17088 | Windows Common Log File System Driver Elevation of Privilege Vulnerability |
| 7.8 | 2020-11-11 | CVE-2020-17087 | Windows Kernel Local Elevation of Privilege Vulnerability |
| 7.8 | 2020-11-11 | CVE-2020-17077 | Windows Update Stack Elevation of Privilege Vulnerability |
| 7.8 | 2020-11-11 | CVE-2020-17076 | Windows Update Orchestrator Service Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-17073, CVE-2020-17074. |
| 7.8 | 2020-11-11 | CVE-2020-17075 | Windows USO Core Worker Elevation of Privilege Vulnerability |
| 7.8 | 2020-11-11 | CVE-2020-17074 | Windows Update Orchestrator Service Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-17073, CVE-2020-17076. |
| 7.8 | 2020-11-11 | CVE-2020-17073 | Windows Update Orchestrator Service Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-17074, CVE-2020-17076. |
| 5.5 | 2020-11-11 | CVE-2020-17071 | Windows Delivery Optimization Information Disclosure Vulnerability |
| 7.8 | 2020-11-11 | CVE-2020-17070 | Windows Update Medic Service Elevation of Privilege Vulnerability |
| 5.5 | 2020-11-11 | CVE-2020-17069 | Windows NDIS Information Disclosure Vulnerability |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 57% (470) | CWE-269 | Improper Privilege Management |
| 16% (134) | CWE-200 | Information Exposure |
| 11% (97) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 2% (23) | CWE-20 | Improper Input Validation |
| 2% (21) | CWE-59 | Improper Link Resolution Before File Access ('Link Following') |
| 2% (17) | CWE-787 | Out-of-bounds Write |
| 1% (11) | CWE-125 | Out-of-bounds Read |
| 0% (4) | CWE-732 | Incorrect Permission Assignment for Critical Resource |
| 0% (4) | CWE-665 | Improper Initialization |
| 0% (4) | CWE-611 | Information Leak Through XML External Entity File Disclosure |
| 0% (3) | CWE-522 | Insufficiently Protected Credentials |
| 0% (3) | CWE-362 | Race Condition |
| 0% (3) | CWE-347 | Improper Verification of Cryptographic Signature |
| 0% (2) | CWE-755 | Improper Handling of Exceptional Conditions |
| 0% (2) | CWE-434 | Unrestricted Upload of File with Dangerous Type |
| 0% (2) | CWE-416 | Use After Free |
| 0% (2) | CWE-367 | Time-of-check Time-of-use (TOCTOU) Race Condition |
| 0% (2) | CWE-354 | Improper Validation of Integrity Check Value |
| 0% (2) | CWE-295 | Certificate Issues |
| 0% (2) | CWE-287 | Improper Authentication |
| 0% (2) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |
| 0% (1) | CWE-754 | Improper Check for Unusual or Exceptional Conditions |
| 0% (1) | CWE-415 | Double Free |
| 0% (1) | CWE-401 | Failure to Release Memory Before Removing Last Reference ('Memory L... |
| 0% (1) | CWE-400 | Uncontrolled Resource Consumption ('Resource Exhaustion') |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2021-01-08 | Microsoft Windows SMB authenticated remote code execution attempt RuleID : 56562 - Type : OS-WINDOWS - Revision : 1 |
| 2021-01-08 | Microsoft Windows SMB authenticated remote code execution attempt RuleID : 56561 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-12 | Windows Network File System denial of service attempt RuleID : 56309 - Type : PROTOCOL-RPC - Revision : 1 |
| 2020-12-10 | Microsoft Windows NFS read procedure remote code execution attempt RuleID : 56302 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows NFS read procedure remote code execution attempt RuleID : 56301 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows Common Log Files System driver privilege escalation attempt RuleID : 56296 - Type : FILE-OTHER - Revision : 1 |
| 2020-12-10 | Microsoft Windows Common Log Files System driver privilege escalation attempt RuleID : 56295 - Type : FILE-OTHER - Revision : 1 |
| 2020-12-10 | Microsoft Windows Win32k privilege escalation attempt RuleID : 56264 - Type : FILE-EXECUTABLE - Revision : 1 |
| 2020-12-10 | Microsoft Windows Win32k privilege escalation attempt RuleID : 56263 - Type : FILE-EXECUTABLE - Revision : 1 |
| 2020-12-10 | Microsoft Windows Win32k elevation of privilege attempt RuleID : 56262 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows Win32k elevation of privilege attempt RuleID : 56261 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows Win32k DirectComposition privilege escalation attempt RuleID : 56260 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows Win32k DirectComposition privilege escalation attempt RuleID : 56259 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows DirectX graphics kernel subsystem privilege escalation attempt RuleID : 56255 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows DirectX graphics kernel subsystem privilege escalation attempt RuleID : 56254 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-08 | Microsoft Windows Kernel Cryptography Driver privilege escalation attempt RuleID : 56231 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-08 | Microsoft Windows Kernel Cryptography Driver privilege escalation attempt RuleID : 56230 - Type : OS-WINDOWS - Revision : 1 |
| 2020-11-12 | Microsoft Windows Remote Desktop information disclosure attempt RuleID : 55994 - Type : OS-WINDOWS - Revision : 1 |
| 2020-11-12 | Microsoft Windows IPv6 DNSSL option record denial of service attempt RuleID : 55993 - Type : PROTOCOL-ICMP - Revision : 1 |
| 2020-11-12 | Microsoft Windows Win32k kernel driver privilege escalation attempt RuleID : 55990 - Type : OS-WINDOWS - Revision : 1 |
| 2020-11-12 | Microsoft Windows Win32k kernel driver privilege escalation attempt RuleID : 55989 - Type : OS-WINDOWS - Revision : 1 |
| 2020-11-12 | Microsoft Windows IPv6 stack remote execution attempt RuleID : 55984 - Type : PROTOCOL-ICMP - Revision : 1 |
| 2020-11-12 | Microsoft Windows digital signature spoofing attempt RuleID : 55983 - Type : OS-WINDOWS - Revision : 1 |
| 2020-11-12 | Microsoft Windows digital signature spoofing attempt RuleID : 55982 - Type : OS-WINDOWS - Revision : 1 |
| 2020-11-12 | Microsoft Windows Media Foundation memory corruption attempt RuleID : 55980 - Type : FILE-MULTIMEDIA - Revision : 1 |
