Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

Microsoft — Vulnerabilities & Security Advisories 8670

Browse all 8670 CVE security advisories affecting Microsoft. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Microsoft operates as a global technology corporation primarily providing enterprise software, cloud computing services, and consumer electronics. Its extensive software portfolio, including Windows operating systems and Office suites, has historically been associated with a high volume of Common Vulnerabilities and Exposures (CVEs), currently totaling 8,272. Common vulnerability classes affecting these products include remote code execution, cross-site scripting, and privilege escalation, often stemming from complex legacy codebases and extensive feature sets. Notable security incidents include the 2021 SolarWinds supply chain compromise, which impacted Microsoft’s Orion platform, and various critical zero-day exploits in Internet Explorer and Edge browsers. The company maintains a dedicated security response team and regularly issues patches through Windows Update to mitigate these risks, though the sheer scale of its ecosystem continues to present significant attack surfaces for threat actors seeking unauthorized access or data exfiltration.

CVE IDTitleCVSSSeverityPublished
CVE-2022-24511 Microsoft Office Word Tampering Vulnerability — Microsoft Office 2019 5.5 Medium2022-03-09
CVE-2022-24510 Microsoft Office Visio Remote Code Execution Vulnerability — Microsoft Office 2019 7.8 High2022-03-09
CVE-2022-24509 Microsoft Office Visio Remote Code Execution Vulnerability — Microsoft Office 2019 7.8 High2022-03-09
CVE-2022-24508 Win32 File Enumeration Remote Code Execution Vulnerability — Windows 10 Version 21H1 8.8 High2022-03-09
CVE-2022-24507 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2022-03-09
CVE-2022-24506 Azure Site Recovery Elevation of Privilege Vulnerability — Azure Site Recovery VMWare to Azure 6.5 Medium2022-03-09
CVE-2022-24505 Windows ALPC Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.0 High2022-03-09
CVE-2022-24503 Remote Desktop Protocol Client Information Disclosure Vulnerability — Windows 10 Version 1809 5.4 Medium2022-03-09
CVE-2022-24502 Windows HTML Platforms Security Feature Bypass Vulnerability — Windows 10 Version 1809 4.3 Medium2022-03-09
CVE-2022-24501 VP9 Video Extensions Remote Code Execution Vulnerability — VP9 Video Extensions 7.8 High2022-03-09
CVE-2022-24471 Azure Site Recovery Remote Code Execution Vulnerability — Azure Site Recovery VMWare to Azure 7.2 High2022-03-09
CVE-2022-24470 Azure Site Recovery Remote Code Execution Vulnerability — Azure Site Recovery VMWare to Azure 7.2 High2022-03-09
CVE-2022-24469 Azure Site Recovery Elevation of Privilege Vulnerability — Azure Site Recovery VMWare to Azure 8.1 High2022-03-09
CVE-2022-24468 Azure Site Recovery Remote Code Execution Vulnerability — Azure Site Recovery VMWare to Azure 7.2 High2022-03-09
CVE-2022-24467 Azure Site Recovery Remote Code Execution Vulnerability — Azure Site Recovery VMWare to Azure 7.2 High2022-03-09
CVE-2022-24465 Microsoft Intune Portal for iOS Security Feature Bypass Vulnerability — Intune Company Portal for iOS 3.3 Low2022-03-09
CVE-2022-24464 .NET and Visual Studio Denial of Service Vulnerability — .NET 6.0 7.5 High2022-03-09
CVE-2022-24463 Microsoft Exchange Server Spoofing Vulnerability — Microsoft Exchange Server 2016 Cumulative Update 21 6.5 Medium2022-03-09
CVE-2022-24462 Microsoft Word Security Feature Bypass Vulnerability — Microsoft Office 2019 5.5 Medium2022-03-09
CVE-2022-24461 Microsoft Office Visio Remote Code Execution Vulnerability — Microsoft Office 2019 7.8 High2022-03-09
CVE-2022-24460 Tablet Windows User Interface Application Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.0 High2022-03-09
CVE-2022-24459 Windows Fax and Scan Service Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2022-03-09
CVE-2022-24457 HEIF Image Extensions Remote Code Execution Vulnerability — HEIF Image Extension 7.8 High2022-03-09
CVE-2022-24456 HEVC Video Extensions Remote Code Execution Vulnerability — HEVC Video Extension 7.8 High2022-03-09
CVE-2022-24455 Windows CD-ROM Driver Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2022-03-09
CVE-2022-24454 Windows Security Support Provider Interface Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2022-03-09
CVE-2022-24453 HEVC Video Extensions Remote Code Execution Vulnerability — HEVC Video Extension 7.8 High2022-03-09
CVE-2022-24452 HEVC Video Extensions Remote Code Execution Vulnerability — HEVC Video Extension 7.8 High2022-03-09
CVE-2022-24451 VP9 Video Extensions Remote Code Execution Vulnerability — VP9 Video Extensions 7.8 High2022-03-09
CVE-2022-23301 HEVC Video Extensions Remote Code Execution Vulnerability — HEVC Video Extension 7.8 High2022-03-09

This page lists every published CVE security advisory associated with Microsoft. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.