Summary
| Detail | |||
|---|---|---|---|
| Vendor | Microsoft | First view | 2015-04-14 |
| Product | Windows 8.1 | Last view | 2022-07-12 |
| Version | - | Type | Os |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | x64 | ||
| Other | * | ||
| CPE Product | cpe:2.3:o:microsoft:windows_8.1 | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 7.1 | 2022-07-12 | CVE-2022-30226 | Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22022, CVE-2022-22041, CVE-2022-30206. |
| 7.1 | 2022-07-12 | CVE-2022-30225 | Windows Media Player Network Sharing Service Elevation of Privilege Vulnerability. |
| 7 | 2022-07-12 | CVE-2022-30224 | Windows Advanced Local Procedure Call Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22037, CVE-2022-30202. |
| 5.7 | 2022-07-12 | CVE-2022-30223 | Windows Hyper-V Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-22042. |
| 8.8 | 2022-07-12 | CVE-2022-30221 | Windows Graphics Component Remote Code Execution Vulnerability. |
| 7.8 | 2022-07-12 | CVE-2022-30220 | Windows Common Log File System Driver Elevation of Privilege Vulnerability. |
| 5.5 | 2022-07-12 | CVE-2022-30213 | Windows GDI+ Information Disclosure Vulnerability. |
| 8.8 | 2022-07-12 | CVE-2022-30211 | Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability. |
| 7.4 | 2022-07-12 | CVE-2022-30209 | Windows IIS Server Elevation of Privilege Vulnerability. |
| 6.5 | 2022-07-12 | CVE-2022-30208 | Windows Security Account Manager (SAM) Denial of Service Vulnerability. |
| 7.8 | 2022-07-12 | CVE-2022-30206 | Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22022, CVE-2022-22041, CVE-2022-30226. |
| 6.6 | 2022-07-12 | CVE-2022-30205 | Windows Group Policy Elevation of Privilege Vulnerability. |
| 7.4 | 2022-07-12 | CVE-2022-30203 | Windows Boot Manager Security Feature Bypass Vulnerability. |
| 7 | 2022-07-12 | CVE-2022-30202 | Windows Advanced Local Procedure Call Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22037, CVE-2022-30224. |
| 7.8 | 2022-07-12 | CVE-2022-22050 | Windows Fax Service Elevation of Privilege Vulnerability. |
| 7.8 | 2022-07-12 | CVE-2022-22049 | Windows CSRSS Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22026, CVE-2022-22047. |
| 6.1 | 2022-07-12 | CVE-2022-22048 | BitLocker Security Feature Bypass Vulnerability. |
| 7.8 | 2022-07-12 | CVE-2022-22047 | Windows CSRSS Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22026, CVE-2022-22049. |
| 7.8 | 2022-07-12 | CVE-2022-22043 | Windows Fast FAT File System Driver Elevation of Privilege Vulnerability. |
| 6.5 | 2022-07-12 | CVE-2022-22042 | Windows Hyper-V Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-30223. |
| 7.2 | 2022-07-12 | CVE-2022-22041 | Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22022, CVE-2022-30206, CVE-2022-30226. |
| 7.3 | 2022-07-12 | CVE-2022-22040 | Internet Information Services Dynamic Compression Module Denial of Service Vulnerability. |
| 7.5 | 2022-07-12 | CVE-2022-22037 | Windows Advanced Local Procedure Call Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-30202, CVE-2022-30224. |
| 7 | 2022-07-12 | CVE-2022-22036 | Performance Counters for Windows Elevation of Privilege Vulnerability. |
| 7.8 | 2022-07-12 | CVE-2022-22034 | Windows Graphics Component Elevation of Privilege Vulnerability. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 35% (34) | CWE-269 | Improper Privilege Management |
| 20% (20) | CWE-20 | Improper Input Validation |
| 16% (16) | CWE-668 | Exposure of Resource to Wrong Sphere |
| 7% (7) | CWE-400 | Uncontrolled Resource Consumption ('Resource Exhaustion') |
| 4% (4) | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
| 3% (3) | CWE-362 | Race Condition |
| 3% (3) | CWE-200 | Information Exposure |
| 2% (2) | CWE-59 | Improper Link Resolution Before File Access ('Link Following') |
| 1% (1) | CWE-787 | Out-of-bounds Write |
| 1% (1) | CWE-434 | Unrestricted Upload of File with Dangerous Type |
| 1% (1) | CWE-346 | Origin Validation Error |
| 1% (1) | CWE-327 | Use of a Broken or Risky Cryptographic Algorithm |
| 1% (1) | CWE-312 | Cleartext Storage of Sensitive Information |
| 1% (1) | CWE-295 | Certificate Issues |
| 1% (1) | CWE-290 | Authentication Bypass by Spoofing |
| 1% (1) | CWE-284 | Access Control (Authorization) Issues |
Information Assurance Vulnerability Management (IAVM)
| id | Description |
|---|---|
| 2015-B-0111 | Microsoft Hyper-V Security Bypass Vulnerability (MS15-105) Severity: Category II - VMSKEY: V0061371 |
| 2015-B-0049 | Microsoft Windows Hyper-V Denial of Service Vulnerability (MS15-042) Severity: Category II - VMSKEY: V0059909 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2020-10-08 | Microsoft Windows kernel driver escalation of privilege attempt RuleID : 55188 - Type : OS-WINDOWS - Revision : 1 |
| 2020-10-08 | Microsoft Windows kernel driver escalation of privilege attempt RuleID : 55187 - Type : OS-WINDOWS - Revision : 1 |
| 2020-08-13 | Microsoft Windows Address Book Contact file integer overflow attempt RuleID : 54533 - Type : FILE-OTHER - Revision : 1 |
| 2020-08-13 | Microsoft Windows Address Book Contact file integer overflow attempt RuleID : 54532 - Type : FILE-OTHER - Revision : 1 |
| 2020-08-13 | Microsoft Windows Address Book Contact file integer overflow attempt RuleID : 54531 - Type : FILE-OTHER - Revision : 1 |
| 2020-08-13 | Microsoft Windows Address Book Contact file integer overflow attempt RuleID : 54530 - Type : FILE-OTHER - Revision : 1 |
| 2020-08-13 | Microsoft Windows Address Book Contact file integer overflow attempt RuleID : 54529 - Type : FILE-OTHER - Revision : 1 |
| 2020-08-13 | Microsoft Windows Address Book Contact file integer overflow attempt RuleID : 54528 - Type : FILE-OTHER - Revision : 1 |
| 2020-06-11 | Microsoft Windows Win32k privilege escalation attempt RuleID : 53933 - Type : OS-WINDOWS - Revision : 1 |
| 2020-06-11 | Microsoft Windows Win32k privilege escalation attempt RuleID : 53932 - Type : OS-WINDOWS - Revision : 1 |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2017-06-14 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_jun_win2008.nasl - Type: ACT_GATHER_INFO |
| 2017-06-13 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_jun_4022715.nasl - Type: ACT_GATHER_INFO |
| 2017-06-13 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_jun_4022719.nasl - Type: ACT_GATHER_INFO |
| 2017-06-13 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_jun_4022724.nasl - Type: ACT_GATHER_INFO |
| 2017-06-13 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_jun_4022726.nasl - Type: ACT_GATHER_INFO |
| 2015-09-08 | Name: The remote Windows host is affected by a security bypass vulnerability. File: smb_nt_ms15-105.nasl - Type: ACT_GATHER_INFO |
| 2015-04-14 | Name: The remote Windows host is affected by a denial of service vulnerability. File: smb_nt_ms15-042.nasl - Type: ACT_GATHER_INFO |
