cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2016-3209,https://securityvulnerability.io/vulnerability/CVE-2016-3209,,"Graphics Device Interface (aka GDI or GDI+) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; Office 2007 SP3; Office 2010 SP2; Word Viewer; Skype for Business 2016; Lync 2013 SP1; Lync 2010; Lync 2010 Attendee; Live Meeting 2007 Console; .NET Framework 3.0 SP2, 3.5, 3.5.1, 4.5.2, and 4.6; and Silverlight 5 allows remote attackers to bypass the ASLR protection mechanism via unspecified vectors, aka ""True Type Font Parsing Information Disclosure Vulnerability.""",Microsoft,"Word Viewer,.net Framework,Live Meeting,Windows Server 2012,Lync,Office,Windows 10,Windows 8.1,Windows Server 2008,Silverlight,Skype For Business,Windows 7,Windows Rt 8.1,Windows Vista",5.5,MEDIUM,0.015790000557899475,false,false,false,false,,false,false,2016-10-14T01:00:00.000Z,0
CVE-2016-3367,https://securityvulnerability.io/vulnerability/CVE-2016-3367,,"StringBuilder in Microsoft Silverlight 5 before 5.1.50709.0 does not properly allocate memory for string-insert and string-append operations, which allows remote attackers to execute arbitrary code via a crafted web site, aka ""Microsoft Silverlight Memory Corruption Vulnerability.""",Microsoft,Silverlight,8.8,HIGH,0.5378000140190125,false,false,false,false,,false,false,2016-09-14T10:00:00.000Z,0
CVE-2016-0034,https://securityvulnerability.io/vulnerability/CVE-2016-0034,,"Microsoft Silverlight 5 before 5.1.41212.0 mishandles negative offsets during decoding, which allows remote attackers to execute arbitrary code or cause a denial of service (object-header corruption) via a crafted web site, aka ""Silverlight Runtime Remote Code Execution Vulnerability.""",Microsoft,Silverlight,8.8,HIGH,0.5402600169181824,true,false,true,true,true,false,false,2016-01-13T02:00:00.000Z,0
CVE-2015-6165,https://securityvulnerability.io/vulnerability/CVE-2015-6165,,"Microsoft Silverlight 5 before 5.1.41105.00 allows remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka ""Microsoft Silverlight Information Disclosure Vulnerability,"" a different vulnerability than CVE-2015-6114.",Microsoft,Silverlight,,,0.07739999890327454,false,false,false,false,,false,false,2015-12-09T11:00:00.000Z,0
CVE-2015-6166,https://securityvulnerability.io/vulnerability/CVE-2015-6166,,"Microsoft Silverlight 5 before 5.1.41105.00 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read or write access) via unspecified open and close requests, aka ""Microsoft Silverlight RCE Vulnerability.""",Microsoft,Silverlight,,,0.6666799783706665,false,false,false,false,,false,false,2015-12-09T11:00:00.000Z,0
CVE-2015-6108,https://securityvulnerability.io/vulnerability/CVE-2015-6108,,"The Windows font library in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT Gold and 8.1; Office 2007 SP3; Office 2010 SP2; Word Viewer; .NET Framework 3.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, 4.5.2, and 4.6; Skype for Business 2016; Lync 2010; Lync 2013 SP1; Live Meeting 2007 Console; and Silverlight 5 allows remote attackers to execute arbitrary code via a crafted embedded font, aka ""Graphics Memory Corruption Vulnerability.""",Microsoft,"Word Viewer,Live Meeting,Lync,Office,Silverlight,Skype For Business",,,0.25975000858306885,false,false,false,false,,false,false,2015-12-09T11:00:00.000Z,0
CVE-2015-6114,https://securityvulnerability.io/vulnerability/CVE-2015-6114,,"Microsoft Silverlight 5 before 5.1.41105.00 allows remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka ""Microsoft Silverlight Information Disclosure Vulnerability,"" a different vulnerability than CVE-2015-6165.",Microsoft,Silverlight,,,0.07739999890327454,false,false,false,false,,false,false,2015-12-09T11:00:00.000Z,0
CVE-2015-1671,https://securityvulnerability.io/vulnerability/CVE-2015-1671,,"The Windows DirectWrite library, as used in Microsoft .NET Framework 3.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, and 4.5.2; Office 2007 SP3 and 2010 SP2; Live Meeting 2007 Console; Lync 2010; Lync 2010 Attendee; Lync 2013 SP1; Lync Basic 2013 SP1; Silverlight 5 before 5.1.40416.00; and Silverlight 5 Developer Runtime before 5.1.40416.00, allows remote attackers to execute arbitrary code via a crafted TrueType font, aka ""TrueType Font Parsing Vulnerability.""",Microsoft,".net Framework,Live Meeting,Office,Lync,Silverlight",7.8,HIGH,0.924239993095398,true,false,false,true,,false,false,2015-05-13T10:00:00.000Z,0
CVE-2015-1715,https://securityvulnerability.io/vulnerability/CVE-2015-1715,,"Microsoft Silverlight 5 before 5.1.40416.00 allows remote attackers to bypass intended integrity-level restrictions via a crafted Silverlight application, aka ""Microsoft Silverlight Out of Browser Application Vulnerability.""",Microsoft,Silverlight,,,0.010400000028312206,false,false,false,false,,false,false,2015-05-13T10:00:00.000Z,0
CVE-2014-0319,https://securityvulnerability.io/vulnerability/CVE-2014-0319,,"Microsoft Silverlight 5 before 5.1.30214.0 and Silverlight 5 Developer Runtime before 5.1.30214.0 allow attackers to bypass the DEP and ASLR protection mechanisms via unspecified vectors, aka ""Silverlight DEP/ASLR Bypass Vulnerability.""",Microsoft,Silverlight,,,0.0023300000466406345,false,false,false,false,,false,false,2014-03-12T01:00:00.000Z,0
CVE-2013-3896,https://securityvulnerability.io/vulnerability/CVE-2013-3896,,"Microsoft Silverlight 5 before 5.1.20913.0 does not properly validate pointers during access to Silverlight elements, which allows remote attackers to obtain sensitive information via a crafted Silverlight application, aka ""Silverlight Vulnerability.""",Microsoft,Silverlight,5.5,MEDIUM,0.5916100144386292,true,false,false,true,,false,false,2013-10-09T14:44:00.000Z,0
CVE-2013-3131,https://securityvulnerability.io/vulnerability/CVE-2013-3131,,"Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5, and Silverlight 5 before 5.1.20513.0, does not properly prevent changes to data in multidimensional arrays of structures, which allows remote attackers to execute arbitrary code via (1) a crafted .NET Framework application or (2) a crafted Silverlight application, aka ""Array Access Violation Vulnerability.""",Microsoft,".net Framework,Silverlight",,,0.9203500151634216,false,false,false,false,,false,false,2013-07-10T01:00:00.000Z,0
CVE-2013-3129,https://securityvulnerability.io/vulnerability/CVE-2013-3129,,"Microsoft .NET Framework 3.0 SP2, 3.5, 3.5.1, 4, and 4.5; Silverlight 5 before 5.1.20513.0; win32k.sys in the kernel-mode drivers, and GDI+, DirectWrite, and Journal, in Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT; GDI+ in Office 2003 SP3, 2007 SP3, and 2010 SP1; GDI+ in Visual Studio .NET 2003 SP1; and GDI+ in Lync 2010, 2010 Attendee, 2013, and Basic 2013 allow remote attackers to execute arbitrary code via a crafted TrueType Font (TTF) file, aka ""TrueType Font Parsing Vulnerability.""",Microsoft,".net Framework,Silverlight,Visual Studio .net,Lync,Office,Lync Basic",,,0.6194300055503845,false,false,false,false,,false,false,2013-07-10T01:00:00.000Z,0
CVE-2013-3178,https://securityvulnerability.io/vulnerability/CVE-2013-3178,,"Microsoft Silverlight 5 before 5.1.20513.0 does not properly initialize arrays, which allows remote attackers to execute arbitrary code or cause a denial of service (NULL pointer dereference) via a crafted Silverlight application, aka ""Null Pointer Vulnerability.""",Microsoft,Silverlight,,,0.9456400275230408,false,false,false,false,,false,false,2013-07-10T01:00:00.000Z,0
CVE-2013-0074,https://securityvulnerability.io/vulnerability/CVE-2013-0074,,"Microsoft Silverlight 5, and 5 Developer Runtime, before 5.1.20125.0 does not properly validate pointers during HTML object rendering, which allows remote attackers to execute arbitrary code via a crafted Silverlight application, aka ""Silverlight Double Dereference Vulnerability.""",Microsoft,Silverlight,7.8,HIGH,0.9380800127983093,true,false,true,true,,false,false,2013-03-13T00:00:00.000Z,0
CVE-2012-0176,https://securityvulnerability.io/vulnerability/CVE-2012-0176,,"Double free vulnerability in Microsoft Silverlight 4 before 4.1.10329 on Windows allows remote attackers to execute arbitrary code via vectors involving crafted XAML glyphs, aka ""Silverlight Double-Free Vulnerability.""",Microsoft,Silverlight,,,0.9511299729347229,false,false,false,false,,false,false,2012-05-09T00:00:00.000Z,0
CVE-2011-1845,https://securityvulnerability.io/vulnerability/CVE-2011-1845,,Multiple memory leaks in the DataGrid control implementation in Microsoft Silverlight 4 before 4.0.60310.0 allow remote attackers to cause a denial of service (memory consumption) via an application involving (1) subscriptions to an INotifyDataErrorInfo.ErrorsChanged event or (2) a TextBlock or TextBox element.,Microsoft,Silverlight,,,0.0042500002309679985,false,false,false,false,,false,false,2011-05-03T19:55:00.000Z,0
CVE-2011-1844,https://securityvulnerability.io/vulnerability/CVE-2011-1844,,"Memory leak in Microsoft Silverlight 4 before 4.0.60310.0 allows remote attackers to cause a denial of service (memory consumption) via an application involving a popup control and a custom DependencyProperty property, related to lack of garbage collection.",Microsoft,Silverlight,,,0.0042500002309679985,false,false,false,false,,false,false,2011-05-03T19:55:00.000Z,0
CVE-2010-0019,https://securityvulnerability.io/vulnerability/CVE-2010-0019,,"Microsoft Silverlight 3 before 3.0.50611.0 on Windows, and before 3.0.41130.0 on Mac OS X, does not properly handle pointers, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and framework outage) via a crafted web site, aka ""Microsoft Silverlight Memory Corruption Vulnerability.""",Microsoft,Silverlight,,,0.4691399931907654,false,false,false,false,,false,false,2010-08-11T18:00:00.000Z,0