Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
windows 7 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-1652
The default configuration of Microsoft Windows 7 immediately prefers a new IPv6 and DHCPv6 service over a currently used IPv4 and DHCPv4 service upon receipt of an IPv6 Router Advertisement (RA), and does not provide an option to ignore an unexpected RA, which allows remote malic...
Microsoft Windows 7
NA
CVE-2014-0262
win32k.sys in the kernel-mode drivers in Microsoft Windows 7 SP1 and Server 2008 R2 SP1 does not properly consider thread-owned objects during the processing of window handles, which allows local users to gain privileges via a crafted application, aka "Win32k Window Handle V...
Microsoft Windows 7
6.5
CVSSv3
CVE-2023-34367
Windows 7 is vulnerable to a full blind TCP/IP hijacking attack. The vulnerability exists in Windows 7 (any Windows until Windows 8) and in any implementation of TCP/IP, which is vulnerable to the Idle scan attack (including many IoT devices). NOTE: The vendor considers this a lo...
Microsoft Windows 7 -
7.8
CVSSv3
CVE-2019-5921
Untrusted search path vulnerability in Windows 7 allows an malicious user to gain privileges via a Trojan horse DLL in an unspecified directory.
Microsoft Windows 7 -
NA
CVE-2013-2553
Unspecified vulnerability in the kernel in Microsoft Windows 7 allows local users to gain privileges via unknown vectors, as demonstrated by Nils and Jon of MWR Labs during a Pwn2Own competition at CanSecWest 2013, a different vulnerability than CVE-2013-0912.
Microsoft Windows 7 -
NA
CVE-2013-2554
Unspecified vulnerability in Microsoft Windows 7 allows malicious users to bypass the ASLR and DEP protection mechanisms via unknown vectors, as demonstrated against Firefox by VUPEN during a Pwn2Own competition at CanSecWest 2013, a different vulnerability than CVE-2013-0787.
Microsoft Windows 7 -
NA
CVE-2011-4695
Unspecified vulnerability in Microsoft Windows 7 SP1, when Java is installed, allows local users to bypass Internet Explorer sandbox restrictions and gain privileges via unknown vectors, as demonstrated by the White Phosphorus wp_ie_sandbox_escape module for Immunity CANVAS. NOTE...
Microsoft Windows 7 -
8.8
CVSSv3
CVE-2016-0170
GDI in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows remote malicious users to execute arbitrary code via a crafted document, aka "Windows Grap...
Microsoft Windows Server 2012
Microsoft Windows 8.1
Microsoft Windows 7 -
Microsoft Windows 7
Microsoft Windows 10 1511
Microsoft Windows 10
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008
Microsoft Windows Rt 8.1
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
1 EDB exploit
3.3
CVSSv3
CVE-2016-0175
The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allow local users to obtain sensitive information about kernel-object addresses, a...
Microsoft Windows Rt 8.1
Microsoft Windows Server 2012 R2
Microsoft Windows 7
Microsoft Windows 7 -
Microsoft Windows Server 2008 R2
Microsoft Windows 10 1511
Microsoft Windows 10
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows Server 2012 -
Microsoft Windows 8.1
7.8
CVSSv3
CVE-2016-0180
The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 mishandles symbolic links, which allows local users to gain privileges via a crafted applicatio...
Microsoft Windows 10
Microsoft Windows Rt 8.1
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows 8.1
Microsoft Windows 7 -
Microsoft Windows 10 1511
Microsoft Windows 7
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2012
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »