Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

Microsoft — Vulnerabilities & Security Advisories 8663

Browse all 8663 CVE security advisories affecting Microsoft. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Microsoft operates as a global technology corporation primarily providing enterprise software, cloud computing services, and consumer electronics. Its extensive software portfolio, including Windows operating systems and Office suites, has historically been associated with a high volume of Common Vulnerabilities and Exposures (CVEs), currently totaling 8,272. Common vulnerability classes affecting these products include remote code execution, cross-site scripting, and privilege escalation, often stemming from complex legacy codebases and extensive feature sets. Notable security incidents include the 2021 SolarWinds supply chain compromise, which impacted Microsoft’s Orion platform, and various critical zero-day exploits in Internet Explorer and Edge browsers. The company maintains a dedicated security response team and regularly issues patches through Windows Update to mitigate these risks, though the sheer scale of its ecosystem continues to present significant attack surfaces for threat actors seeking unauthorized access or data exfiltration.

CVE IDTitleCVSSSeverityPublished
CVE-2022-30146 Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability — Windows 10 Version 1809 7.5 High2022-06-15
CVE-2022-30145 Windows Encrypting File System (EFS) Remote Code Execution Vulnerability — Windows 10 Version 1809 7.5 High2022-06-15
CVE-2022-30143 Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability — Windows 10 Version 1809 7.5 High2022-06-15
CVE-2022-30142 Windows File History Remote Code Execution Vulnerability — Windows 10 Version 1809 7.5 High2022-06-15
CVE-2022-30141 Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability — Windows 10 Version 1809 8.1 High2022-06-15
CVE-2022-30140 Windows iSCSI Discovery Service Remote Code Execution Vulnerability — Windows 10 Version 1809 7.5 High2022-06-15
CVE-2022-30139 Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability — Windows 10 Version 1809 7.5 High2022-06-15
CVE-2022-30137 Azure Service Fabric Container Elevation of Privilege Vulnerability — Service Fabric 6.7 Medium2022-06-15
CVE-2022-30136 Windows Network File System Remote Code Execution Vulnerability — Windows Server 2019 9.8 Critical2022-06-15
CVE-2022-30135 Windows Media Center Elevation of Privilege Vulnerability — Windows 7 7.8 High2022-06-15
CVE-2022-30132 Windows Container Manager Service Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2022-06-15
CVE-2022-30131 Windows Container Isolation FS Filter Driver Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2022-06-15
CVE-2022-29149 Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability — Azure Automation State Configuration, DSC Extension 7.8 High2022-06-15
CVE-2022-29143 Microsoft SQL Server Remote Code Execution Vulnerability — Microsoft SQL Server 2017 (GDR) 7.5 High2022-06-15
CVE-2022-29119 HEVC Video Extensions Remote Code Execution Vulnerability — HEVC Video Extension 7.8 High2022-06-15
CVE-2022-29111 HEVC Video Extensions Remote Code Execution Vulnerability — HEVC Video Extension 7.8 High2022-06-15
CVE-2022-22021 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability — Microsoft Edge (Chromium-based) 8.3 High2022-06-15
CVE-2022-22018 HEVC Video Extensions Remote Code Execution Vulnerability — HEVC Video Extension 7.8 High2022-06-15
CVE-2022-32230 SMBv3 FileNormalizedNameInformation NULL Pointer Dereference — Windows 10 Version 20H2CWE-476 7.5 High2022-06-14
CVE-2022-30190 Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability — Windows 10 Version 1809 7.8 High2022-06-01
CVE-2022-30128 Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability — Microsoft Edge (Chromium-based) 8.3 High2022-06-01
CVE-2022-30127 Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability — Microsoft Edge (Chromium-based) 8.3 High2022-06-01
CVE-2022-26905 Microsoft Edge (Chromium-based) Spoofing Vulnerability — Microsoft Edge (Chromium-based) 4.3 Medium2022-06-01
CVE-2022-30138 Windows Print Spooler Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2022-05-18
CVE-2022-30130 .NET Framework Denial of Service Vulnerability — Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 3.3 Low2022-05-10
CVE-2022-30129 Visual Studio Code Remote Code Execution Vulnerability — Visual Studio Code 8.8 High2022-05-10
CVE-2022-29151 Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability — Windows Server 2019 7.0 High2022-05-10
CVE-2022-29150 Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability — Windows Server 2019 7.0 High2022-05-10
CVE-2022-29148 Visual Studio Remote Code Execution Vulnerability — Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) 7.8 High2022-05-10
CVE-2022-29145 .NET and Visual Studio Denial of Service Vulnerability — .NET 6.0 7.5 High2022-05-10

This page lists every published CVE security advisory associated with Microsoft. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.