Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft powershell vulnerabilities and exploits
(subscribe to this query)
9
CVSSv3
CVE-2021-34523
Microsoft Exchange Server Elevation of Privilege Vulnerability
Microsoft Exchange Server 2013
Microsoft Exchange Server 2019
Microsoft Exchange Server 2016
7 Github repositories
11 Articles
5.3
CVSSv3
CVE-2017-0218
Microsoft Windows 10 Gold, Windows 10 1511, Windows 10 1607, and Windows Server 2016 allow an malicious user to exploit a security feature bypass vulnerability in Device Guard that could allow the malicious user to inject malicious code into a Windows PowerShell session, aka &quo...
Microsoft Windows Server 2016 -
Microsoft Windows 10 1607
Microsoft Windows 10 1511
5.3
CVSSv3
CVE-2017-0219
Microsoft Windows 10 Gold, Windows 10 1511, Windows 10 1607, and Windows Server 2016 allow an malicious user to exploit a security feature bypass vulnerability in Device Guard that could allow the malicious user to inject malicious code into a Windows PowerShell session, aka &quo...
Microsoft Windows 10 1511
Microsoft Windows Server 2016 -
Microsoft Windows 10 1607
8
CVSSv3
CVE-2022-41082
Microsoft Exchange Server Remote Code Execution Vulnerability
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
Microsoft Exchange Server 2019
16 Github repositories
8 Articles
5.3
CVSSv3
CVE-2017-0173
Microsoft Windows 10 1607 and Windows Server 2016 allow an malicious user to exploit a security feature bypass vulnerability in Device Guard that could allow the malicious user to inject malicious code into a Windows PowerShell session, aka "Device Guard Code Integrity Polic...
Microsoft Windows 10 1607
Microsoft Windows Server 2016 -
5.3
CVSSv3
CVE-2017-0215
Microsoft Windows 10 1607 and Windows Server 2016 allow an malicious user to exploit a security feature bypass vulnerability in Device Guard that could allow the malicious user to inject malicious code into a Windows PowerShell session, aka "Device Guard Code Integrity Polic...
Microsoft Windows Server 2016 -
Microsoft Windows 10 1607
5.3
CVSSv3
CVE-2020-16886
<p>A security feature bypass vulnerability exists in the PowerShellGet V2 module. An attacker who successfully exploited this vulnerability could bypass WDAC (Windows Defender Application Control) policy and execute arbitrary code on a policy locked-down machine.</p> ...
Microsoft Powershellget 2.2.5
NA
CVE-2014-6332
OleAut32.dll in OLE in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote malicious users to execute arbitrary code via a craft...
Microsoft Windows Server 2008 R2
Microsoft Windows 7 -
Microsoft Windows Server 2008 -
Microsoft Windows Vista -
Microsoft Windows Rt -
Microsoft Windows Rt 8.1 -
Microsoft Windows Server 2012 -
Microsoft Windows 8.1 -
Microsoft Windows Server 2003 -
Microsoft Windows Server 2012 R2
Microsoft Windows 8 -
9 EDB exploits
10 Github repositories
9 Articles
7.8
CVSSv3
CVE-2022-30190
<p>A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker c...
Microsoft Windows Server 2012 R2
Microsoft Windows 10 1607
Microsoft Windows 8.1 -
Microsoft Windows Server 2016 -
Microsoft Windows Server 2008 -
Microsoft Windows Server 2008 R2
Microsoft Windows 7 -
Microsoft Windows Rt 8.1 -
Microsoft Windows Server 2012 -
Microsoft Windows 10 -
Microsoft Windows Server 2019 -
Microsoft Windows 10 1809
Microsoft Windows 10 20h2
Microsoft Windows 10 21h1
Microsoft Windows Server 2022 -
Microsoft Windows 11 -
Microsoft Windows 10 21h2
121 Github repositories
8 Articles
5.3
CVSSv3
CVE-2019-1000
An elevation of privilege vulnerability exists in Microsoft Azure Active Directory Connect build 1.3.20.0, which allows an malicious user to execute two PowerShell cmdlets in context of a privileged account, and perform privileged actions.To exploit this, an attacker would need t...
Microsoft Azure Active Directory Connect -
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
IMAP
CVE-2024-4367
server-side request forgery
information disclosure
CVE-2024-34342
CVE-2024-4281
CVE-2024-3507
CVE-2024-25560
CVE-2024-34574
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »