microsoft — Vulnerabilities & Security Advisories 8437

Browse all 8437 CVE security advisories affecting microsoft. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Microsoft operates as a global technology corporation primarily providing enterprise software, cloud computing services, and consumer electronics. Its extensive software portfolio, including Windows operating systems and Office suites, has historically been associated with a high volume of Common Vulnerabilities and Exposures (CVEs), currently totaling 8,272. Common vulnerability classes affecting these products include remote code execution, cross-site scripting, and privilege escalation, often stemming from complex legacy codebases and extensive feature sets. Notable security incidents include the 2021 SolarWinds supply chain compromise, which impacted Microsoft’s Orion platform, and various critical zero-day exploits in Internet Explorer and Edge browsers. The company maintains a dedicated security response team and regularly issues patches through Windows Update to mitigate these risks, though the sheer scale of its ecosystem continues to present significant attack surfaces for threat actors seeking unauthorized access or data exfiltration.

CVE ID	Title	CVSS	Severity	Published
CVE-2024-26166	Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability — Windows 10 Version 1809CWE-122	8.8	High	2024-03-12
CVE-2024-26160	Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability — Windows 11 version 22H2CWE-126	5.5	Medium	2024-03-12
CVE-2024-21440	Microsoft ODBC Driver Remote Code Execution Vulnerability — Windows 10 Version 1809CWE-197	8.8	High	2024-03-12
CVE-2024-21448	Microsoft Teams for Android Information Disclosure Vulnerability — Microsoft Teams for AndroidCWE-20	5.0	Medium	2024-03-12
CVE-2024-21436	Windows Installer Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-284	7.8	High	2024-03-12
CVE-2024-21437	Windows Graphics Component Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-416	7.8	High	2024-03-12
CVE-2024-21434	Microsoft Windows SCSI Class System File Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-197	7.8	High	2024-03-12
CVE-2024-21435	Windows OLE Remote Code Execution Vulnerability — Windows 11 version 22H2CWE-426	8.8	High	2024-03-12
CVE-2024-21433	Windows Print Spooler Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-367	7.0	High	2024-03-12
CVE-2024-21431	Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability — Windows Server 2022CWE-732	7.8	High	2024-03-12
CVE-2024-21432	Windows Update Stack Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-59	7.0	High	2024-03-12
CVE-2024-21427	Windows Kerberos Security Feature Bypass Vulnerability — Windows Server 2019CWE-287	7.5	High	2024-03-12
CVE-2024-21408	Windows Hyper-V Denial of Service Vulnerability — Windows 10 Version 1809CWE-835	5.5	Medium	2024-03-12
CVE-2024-21419	Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability — Microsoft Dynamics 365 (on-premises) version 9.1CWE-79	7.6	High	2024-03-12
CVE-2024-21400	Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability — Azure Kubernetes ServiceCWE-22	9.0	Critical	2024-03-12
CVE-2024-21407	Windows Hyper-V Remote Code Execution Vulnerability — Windows 10 Version 1809CWE-416	8.1	High	2024-03-12
CVE-2024-21390	Microsoft Authenticator Elevation of Privilege Vulnerability — Microsoft AuthenticatorCWE-287	7.1	High	2024-03-12
CVE-2024-21330	Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability — System Center Operations Manager (SCOM) 2019CWE-122	7.8	High	2024-03-12
CVE-2024-21334	Open Management Infrastructure (OMI) Remote Code Execution Vulnerability — System Center Operations Manager (SCOM) 2019CWE-416	9.8	Critical	2024-03-12
CVE-2024-26161	Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability — Windows 10 Version 1809CWE-122	8.8	High	2024-03-12
CVE-2024-26164	Microsoft Django Backend for SQL Server Remote Code Execution Vulnerability — SQL Server backend for DjangoCWE-20	8.8	High	2024-03-12
CVE-2024-26201	Microsoft Intune Linux Agent Elevation of Privilege Vulnerability — Intune Company Portal for AndroidCWE-284	6.6	Medium	2024-03-12
CVE-2024-26203	Azure Data Studio Elevation of Privilege Vulnerability — Azure Data StudioCWE-284	7.3	High	2024-03-12
CVE-2024-26198	Microsoft Exchange Server Remote Code Execution Vulnerability — Microsoft Exchange Server 2019 Cumulative Update 14CWE-426	8.8	High	2024-03-12
CVE-2024-26199	Microsoft Office Elevation of Privilege Vulnerability — Microsoft 365 Apps for EnterpriseCWE-59	7.8	High	2024-03-12
CVE-2024-26190	Microsoft QUIC Denial of Service Vulnerability — Microsoft Visual Studio 2022 version 17.9CWE-400	7.5	High	2024-03-12
CVE-2024-26159	Microsoft ODBC Driver Remote Code Execution Vulnerability — Windows 10 Version 1809CWE-122	8.8	High	2024-03-12
CVE-2024-26197	Windows Standards-Based Storage Management Service Denial of Service Vulnerability — Windows Server 2019CWE-20	6.5	Medium	2024-03-12
CVE-2024-21450	Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability — Windows 10 Version 1809CWE-190	8.8	High	2024-03-12
CVE-2024-21451	Microsoft ODBC Driver Remote Code Execution Vulnerability — Windows 10 Version 1809CWE-197	8.8	High	2024-03-12

This page lists every published CVE security advisory associated with microsoft. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

microsoft — Vulnerabilities & Security Advisories 8437