Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
windows 7 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2019-1480
An information disclosure vulnerability exists in Windows Media Player when it fails to properly handle objects in memory, aka 'Windows Media Player Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1481.
Microsoft Windows 7 -
1 Article
NA
CVE-2023-34367
Windows 7 is vulnerable to a full blind TCP/IP hijacking attack. The vulnerability exists in Windows 7 (any Windows until Windows 8) and in any implementation of TCP/IP, which is vulnerable to the Idle scan attack (including many IoT devices). NOTE: The vendor considers this a lo...
Microsoft Windows 7 -
7.2
CVSSv2
CVE-2014-0262
win32k.sys in the kernel-mode drivers in Microsoft Windows 7 SP1 and Server 2008 R2 SP1 does not properly consider thread-owned objects during the processing of window handles, which allows local users to gain privileges via a crafted application, aka "Win32k Window Handle V...
Microsoft Windows 7
6.8
CVSSv2
CVE-2019-5921
Untrusted search path vulnerability in Windows 7 allows an malicious user to gain privileges via a Trojan horse DLL in an unspecified directory.
Microsoft Windows 7 -
7.2
CVSSv2
CVE-2013-3881
win32k.sys in the kernel-mode drivers in Microsoft Windows 7 SP1 and Windows Server 2008 R2 SP1 allows local users to gain privileges via a crafted application, aka "Win32k NULL Page Vulnerability."
Microsoft Windows 7
1 EDB exploit
5
CVSSv2
CVE-2011-1652
The default configuration of Microsoft Windows 7 immediately prefers a new IPv6 and DHCPv6 service over a currently used IPv4 and DHCPv4 service upon receipt of an IPv6 Router Advertisement (RA), and does not provide an option to ignore an unexpected RA, which allows remote malic...
Microsoft Windows 7
7.2
CVSSv2
CVE-2013-3902
Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2008 R2 SP1 and Windows 7 SP1 on 64-bit platforms allows local users to gain privileges via a crafted application, aka "Win32k Use After Free Vulnerability."
Microsoft Windows 7
7.2
CVSSv2
CVE-2016-0197
dxgkrnl.sys in the DirectX Graphics kernel subsystem in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain...
Microsoft Windows 10
Microsoft Windows Rt 8.1
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows 8.1
Microsoft Windows 7 -
Microsoft Windows 10 1511
Microsoft Windows 7
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2012
2.1
CVSSv2
CVE-2016-0175
The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allow local users to obtain sensitive information about kernel-object addresses, a...
Microsoft Windows Rt 8.1
Microsoft Windows Server 2012 R2
Microsoft Windows 7
Microsoft Windows 7 -
Microsoft Windows Server 2008 R2
Microsoft Windows 10 1511
Microsoft Windows 10
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows Server 2012 -
Microsoft Windows 8.1
9.3
CVSSv2
CVE-2016-0170
GDI in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows remote malicious users to execute arbitrary code via a crafted document, aka "Windows Grap...
Microsoft Windows Server 2012
Microsoft Windows 8.1
Microsoft Windows 7 -
Microsoft Windows 7
Microsoft Windows 10 1511
Microsoft Windows 10
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008
Microsoft Windows Rt 8.1
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »