cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2017-8467,https://securityvulnerability.io/vulnerability/CVE-2017-8467,Elevation of Privilege Vulnerability in Microsoft Windows Products,"An elevation of privilege vulnerability exists in the way Microsoft Windows handles objects in memory. This flaw can allow an attacker to execute arbitrary code with elevated permissions, potentially compromising the system's security. Systems affected include various versions of Windows from Windows 7 to Windows 10, as well as multiple Windows Server iterations. Proper mitigation through updates and patches is essential to protect against potential exploitation.",Microsoft,"Microsoft Windows 7 Sp1, Windows Server 2008 Sp2 And R2 Sp1, Windows 8.1 And Windows Rt 8.1, Windows Server 2012 And R2, Windows 10 Gold, 1511, 1607, 1703, And Windows Server 2016.",7,HIGH,0.010300000198185444,false,,false,false,false,,,false,false,,2017-07-11T00:00:00.000Z,0
CVE-2017-8486,https://securityvulnerability.io/vulnerability/CVE-2017-8486,Information Disclosure Vulnerability in Microsoft Windows Products,"This vulnerability in Microsoft Windows allows attackers to access sensitive information due to improper handling of objects in memory. It affects multiple Windows versions, including Windows 7, 8.1, and Windows 10, posing risks for users by potentially exposing confidential data to unauthorized parties. The issue stems from flaws in the win32k.sys component, which can be exploited to retrieve information from the system's memory.",Microsoft,"Microsoft Windows 7 Sp1, Windows Server 2008 Sp2 And R2 Sp1, Windows 8.1 And Windows Rt 8.1, Windows Server 2012 And R2, Windows 10 Gold, 1511, 1607, 1703, And Windows Server 2016.",4.7,MEDIUM,0.014069999568164349,false,,false,false,false,,,false,false,,2017-07-11T00:00:00.000Z,0
CVE-2017-8580,https://securityvulnerability.io/vulnerability/CVE-2017-8580,Elevated Privileges Vulnerability in Microsoft Windows Products,"The vulnerability is found in the Win32k component of multiple Microsoft Windows operating systems, which fails to properly manage objects in memory. This flaw allows an attacker to elevate their privileges, potentially leading to unauthorized access and control over affected systems. The vulnerability affects various versions of Windows, including Windows 7 through Windows 10, and multiple Server editions, highlighting the importance of patching for security compliance.",Microsoft,"Microsoft Windows Server 2008 Sp2 And R2 Sp1, Windows 7 Sp1, Windows 8.1, Windows Server 2012 Gold And R2, Windows Rt 8.1, Windows 10 Gold, 1511, 1607, And 1703, And Windows Server 2016",7,HIGH,0.010300000198185444,false,,false,false,false,,,false,false,,2017-07-11T00:00:00.000Z,0
CVE-2017-8582,https://securityvulnerability.io/vulnerability/CVE-2017-8582,Information Disclosure Vulnerability in Microsoft Windows HTTP.sys,"The HTTP.sys component in various versions of Microsoft Windows has a vulnerability that could allow an attacker to access sensitive information. This occurs due to the improper handling of objects in memory, which may lead to data leaks. Affected versions include Windows Server 2008 SP2, Windows 7 SP1, and several others, making it crucial for users to apply the appropriate security updates to mitigate the risk of unauthorized data exposure.",Microsoft,"Microsoft Windows Server 2008 Sp2 And R2 Sp1, Windows 7 Sp1, Windows 8.1, Windows Server 2012 Gold And R2, Windows Rt 8.1, Windows 10 Gold, 1511, 1607, And 1703, And Windows Server 2016",5.9,MEDIUM,0.011909999884665012,false,,false,false,false,,,false,false,,2017-07-11T00:00:00.000Z,0
CVE-2017-8590,https://securityvulnerability.io/vulnerability/CVE-2017-8590,Elevation of Privilege Vulnerability in Microsoft Windows Products,"Microsoft Windows products, including various versions of Windows 7, 8.1, 10, and Server editions, contain a vulnerability that allows an attacker to elevate privileges. This issue arises from the handling of objects in memory by the Windows Common Log File System (CLFS) driver, potentially allowing unauthorized access to sensitive system resources. Proper mitigation measures are essential to prevent exploitation of this security flaw.",Microsoft,"Microsoft Windows 7 Sp1, Windows Server 2008 Sp2 And R2 Sp1, Windows 8.1 And Windows Rt 8.1, Windows Server 2012 And R2, Windows 10 Gold, 1511, 1607, 1703, And Windows Server 2016.",8.8,HIGH,0.004889999981969595,false,,false,false,false,,,false,false,,2017-07-11T00:00:00.000Z,0
CVE-2017-8495,https://securityvulnerability.io/vulnerability/CVE-2017-8495,Kerberos SNAME Security Feature Bypass in Microsoft Windows Products,"This vulnerability in Microsoft Windows products allows attackers to bypass Extended Protection for Authentication during Kerberos ticket exchanges. It particularly affects the handling of the SNAME field, potentially enabling unauthorized access and manipulation of authentication processes across various Windows operating systems. Mitigation should be prioritized to safeguard against exploitation.",Microsoft,"Microsoft Windows 7 Sp1, Windows Server 2008 Sp2 And R2 Sp1, Windows 8.1 And Windows Rt 8.1, Windows Server 2012 And R2, Windows 10 Gold, 1511, 1607, And 1703, And Windows Server 2016.",7.5,HIGH,0.0027699999045580626,false,,false,false,false,,,false,false,,2017-07-11T00:00:00.000Z,0
CVE-2017-8581,https://securityvulnerability.io/vulnerability/CVE-2017-8581,Elevation of Privilege Vulnerability in Microsoft Windows Products,"The vulnerability in Microsoft Windows products arises from an improper handling of objects in memory within the Win32k component. This allows an attacker to elevate their privileges on affected systems, potentially granting them unauthorized access to sensitive system resources and user data. Exploitation of this vulnerability may lead to significant security threats, enabling malicious actors to execute arbitrary code or gain additional privileges, thereby compromising the overall security of the affected environments.",Microsoft,"Microsoft Windows Server 2008 Sp2 And R2 Sp1, Windows 7 Sp1, Windows 8.1, Windows Server 2012 Gold And R2, Windows Rt 8.1, Windows 10 Gold, 1511, 1607, And 1703, And Windows Server 2016",7,HIGH,0.006219999864697456,false,,false,false,false,,,false,false,,2017-07-11T00:00:00.000Z,0
CVE-2017-8589,https://securityvulnerability.io/vulnerability/CVE-2017-8589,Remote Code Execution Vulnerability in Microsoft Windows Products,"A vulnerability exists within Microsoft's Windows Search feature that can allow an attacker to execute arbitrary code on a target system. The flaw arises from improper handling of objects in memory, which could be exploited by sending specially crafted requests. If successful, an attacker could gain the same user rights as the logged-on user, potentially leading to unauthorized access and system control. Affected users are encouraged to apply the recommended security updates to mitigate the risks associated with this vulnerability.",Microsoft,"Microsoft Windows 7 Sp1, Windows Server 2008 Sp2 And R2 Sp1, Windows 8.1 And Windows Rt 8.1, Windows Server 2012 And R2, Windows 10 Gold, 1511, 1607, 1703, And Windows Server 2016.",9.8,CRITICAL,0.6297399997711182,false,,false,false,false,,,false,false,,2017-07-11T00:00:00.000Z,0
CVE-2017-8563,https://securityvulnerability.io/vulnerability/CVE-2017-8563,Elevation of Privilege Vulnerability in Microsoft Windows Products,"Microsoft Windows products exhibit an elevation of privilege vulnerability stemming from a fallback to the NT LAN Manager (NTLM) Authentication Protocol via Kerberos. This situation can potentially allow an attacker to gain elevated access privileges within the affected systems, compromising the integrity and confidentiality of the environment. It is crucial for organizations using affected Windows versions to apply the necessary patches and updates to mitigate this risk.",Microsoft,"Microsoft Windows 7 Sp1, Windows Server 2008 Sp2 And R2 Sp1, Windows 8.1 And Windows Rt 8.1, Windows Server 2012 And R2, Windows 10 Gold, 1511, 1607, 1703, And Windows Server 2016.",8.1,HIGH,0.0021299999207258224,false,,false,false,false,,,false,false,,2017-07-11T00:00:00.000Z,0
CVE-2017-8564,https://securityvulnerability.io/vulnerability/CVE-2017-8564,Windows Kernel Information Disclosure Vulnerability in Microsoft Products,"The Windows kernel of various Microsoft operating systems is susceptible to an information disclosure vulnerability. This issue arises from improper initialization of a memory address, which could potentially allow unauthorized access to sensitive data. Such vulnerabilities can expose critical system information, increasing the risk for exploitation if left unpatched. Administrators are encouraged to review the security advisory by Microsoft and apply recommended updates to safeguard their systems and mitigate this vulnerability.",Microsoft,"Microsoft Windows Server 2008 Sp2 And R2 Sp1, Windows 7 Sp1, Windows 8.1, Windows Server 2012 Gold And R2, Windows Rt 8.1, Windows 10 Gold, 1511, 1607, And 1703, And Windows Server 2016",5.5,MEDIUM,0.5089899897575378,false,,false,false,false,,,false,false,,2017-07-11T00:00:00.000Z,0
CVE-2017-8573,https://securityvulnerability.io/vulnerability/CVE-2017-8573,Elevation of Privilege Vulnerability in Microsoft Windows Graphics Components,"This vulnerability exists due to improper handling of objects in memory within the Microsoft Graphics Component of various Windows Operating Systems. Successful exploitation could allow an attacker to elevate privileges, potentially leading to unauthorized access and manipulation of system operations. It affects multiple versions of Windows, making systems vulnerable if not patched promptly.",Microsoft,"Microsoft Windows Server 2008 Sp2 And R2 Sp1, Windows 7 Sp1, Windows 8.1, Windows Server 2012 Gold And R2, Windows Rt 8.1, Windows 10 Gold, 1511, 1607, And 1703, And Windows Server 2016",7,HIGH,0.006219999864697456,false,,false,false,false,,,false,false,,2017-07-11T00:00:00.000Z,0
CVE-2017-8577,https://securityvulnerability.io/vulnerability/CVE-2017-8577,Elevation of Privilege Vulnerability in Microsoft Windows Products,"The vulnerability arises from the Win32k component in various Microsoft Windows operating systems, where it inadequately manages objects in memory. This flaw can be exploited to elevate privileges, allowing unauthorized access and potential control over the system. It affects a range of versions, including multiple releases of Windows Server and Windows 10, representing a significant security concern for affected users.",Microsoft,"Microsoft Windows Server 2008 Sp2 And R2 Sp1, Windows 7 Sp1, Windows 8.1, Windows Server 2012 Gold And R2, Windows Rt 8.1, Windows 10 Gold, 1511, 1607, And 1703, And Windows Server 2016",7,HIGH,0.010300000198185444,false,,false,false,false,,,false,false,,2017-07-11T00:00:00.000Z,0
CVE-2017-8578,https://securityvulnerability.io/vulnerability/CVE-2017-8578,Elevation of Privilege Vulnerability in Microsoft Windows Products,"The vulnerability exists in the Win32k component of Microsoft Windows, which does not adequately manage memory objects. An authenticated attacker could exploit this vulnerability to execute arbitrary code within the context of the Kernel. Successful exploitation could allow attackers to elevate their privileges on the affected systems, potentially gaining full control. This poses significant risks, as it can enable unauthorized actions and compromise system integrity. All affected products should be promptly updated to mitigate the risks associated with this vulnerability.",Microsoft,"Microsoft Windows Server 2008 Sp2 And R2 Sp1, Windows 7 Sp1, Windows 8.1, Windows Server 2012 Gold And R2, Windows Rt 8.1, Windows 10 Gold, 1511, 1607, And 1703, And Windows Server 2016",7.8,HIGH,0.003120000008493662,false,,false,false,false,,,false,false,,2017-07-11T00:00:00.000Z,0