Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Microsoft Corporation — Vulnerabilities & Security Advisories 865

Browse all 865 CVE security advisories affecting Microsoft Corporation. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Microsoft Corporation operates primarily as a technology conglomerate, providing cloud computing services, software licensing, and enterprise hardware. Its extensive software ecosystem, particularly Windows and Azure, makes it a frequent target for cyberattacks, resulting in 865 recorded CVEs. Historically, the company faces significant challenges with remote code execution (RCE) vulnerabilities, often stemming from complex codebases in Office applications and system services. Privilege escalation flaws and cross-site scripting (XSS) issues also appear frequently, reflecting the breadth of its attack surface. Notable security incidents include the SolarWinds supply chain compromise, which impacted Microsoft’s Orion software, and various ransomware attacks exploiting unpatched Exchange Server vulnerabilities. These events highlight the critical importance of rigorous patch management and secure development practices within Microsoft Corporation’s vast infrastructure, underscoring the persistent risks associated with its dominant market position.

Top products by Microsoft Corporation: Microsoft Edge Microsoft Windows Internet Explorer Microsoft Office Windows Kernel ChakraCore, Microsoft Edge Windows Windows Uniscribe Browser Microsoft Scripting Engine Windows Hyper-V Microsoft SharePoint Office Edge Equation Editor Hyper-V ChakraCore, Microsoft Edge, Internet Explorer ASP.NET Core Microsoft Edge, ChakraCore Win32k ChakraCore Uniscribe Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 Malware Protection Engine Internet Explorer, Microsoft Edge Server Message Block 1.0 Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 Microsoft browsers Windows SMB Windows Graphics Component
CVE IDTitleCVSSSeverityPublished
CVE-2018-0821 Microsoft AppContainer 权限许可和访问控制问题漏洞 — AppContainer 7.0 -2018-02-15
CVE-2018-0822 Microsoft NTFS 权限许可和访问控制问题漏洞 — NTFS 7.0 -2018-02-15
CVE-2018-0823 Microsoft Named Pipe File System 权限许可和访问控制问题漏洞 — Named Pipe File System 7.8 -2018-02-15
CVE-2018-0825 Microsoft StructuredQuery 缓冲区错误漏洞 — StructuredQuery 7.5 -2018-02-15
CVE-2018-0826 Microsoft Windows Storage Services 权限许可和访问控制问题漏洞 — Windows Storage Services 7.0 -2018-02-15
CVE-2018-0827 Microsoft Windows Scripting Host 安全漏洞 — Windows Scripting Host 4.5 -2018-02-15
CVE-2018-0828 Microsoft Windows 权限许可和访问控制问题漏洞 — Windows 7.8 -2018-02-15
CVE-2018-0829 Microsoft Windows kernel 信息泄露漏洞 — Windows 4.7 -2018-02-15
CVE-2018-0830 Microsoft Windows kernel 信息泄露漏洞 — Windows 4.7 -2018-02-15
CVE-2018-0831 Microsoft Windows kernel 权限许可和访问控制问题漏洞 — Windows 7.0 -2018-02-15
CVE-2018-0832 Microsoft Windows kernel 信息泄露漏洞 — Windows 4.7 -2018-02-15
CVE-2018-0833 Microsoft Server Message Block客户端安全漏洞 — Server Message Block 5.9 -2018-02-15
CVE-2018-0835 Microsoft Edge和ChakraCore 缓冲区错误漏洞 — Microsoft Edge, ChakraCore 7.5 -2018-02-15
CVE-2018-0858 Microsoft ChakraCore 缓冲区错误漏洞 — ChakraCore 7.5 -2018-02-15
CVE-2018-0857 Microsoft Edge和ChakraCore 缓冲区错误漏洞 — Microsoft Edge, ChakraCore 7.5 -2018-02-15
CVE-2018-0859 Microsoft Edge和ChakraCore 缓冲区错误漏洞 — Microsoft Edge, ChakraCore 7.5 -2018-02-15
CVE-2018-0860 Microsoft Edge和ChakraCore 缓冲区错误漏洞 — Microsoft Edge, ChakraCore 7.5 -2018-02-15
CVE-2018-0861 Microsoft Edge scripting引擎缓冲区错误漏洞 — Microsoft Edge 7.5 -2018-02-15
CVE-2018-0856 Microsoft Edge和ChakraCore 缓冲区错误漏洞 — Microsoft Edge, ChakraCore 7.5 -2018-02-15
CVE-2018-0855 Microsoft Embedded OpenType字体引擎信息泄露漏洞 — Windows Embedded OpenType (EOT) font engine 5.5 -2018-02-15
CVE-2018-0853 Microsoft Office 信息泄露漏洞 — Microsoft Office 3.3 -2018-02-15
CVE-2018-0852 Microsoft Office 缓冲区错误漏洞 — Microsoft Office 8.8 -2018-02-15
CVE-2018-0866 Microsoft Internet Explorer scripting引擎缓冲区错误漏洞 — Internet Explorer 7.5 -2018-02-15
CVE-2018-0869 Microsoft SharePoint Server 权限许可和访问控制漏洞 — SharePoint Server 9.0 -2018-02-15
CVE-2018-0850 Microsoft Outlook 权限许可和访问控制问题漏洞 — Microsoft Outlook 8.1 -2018-02-15
CVE-2018-0847 Microsoft Windows scripting引擎信息泄露漏洞 — Internet Explorer 4.3 -2018-02-15
CVE-2018-0840 Microsoft Edge、IE和ChakraCore 缓冲区错误漏洞 — Microsoft Edge, ChakraCore, Internet Explorer 7.5 -2018-02-15
CVE-2018-0843 Microsoft Windows kernel 信息泄露漏洞 — Windows 4.7 -2018-02-15
CVE-2018-0841 Microsoft Office 2016 Click-to-Run 安全漏洞 — Microsoft Office 8.8 -2018-02-15
CVE-2018-0844 Microsoft Windows Common Log File System驱动程序权限许可和访问控制问题漏洞 — Windows Common Log File System 7.8 -2018-02-15

This page lists every published CVE security advisory associated with Microsoft Corporation. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.