Microsoft — Vulnerabilities & Security Advisories 8444

Browse all 8444 CVE security advisories affecting Microsoft. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Microsoft operates as a global technology corporation primarily providing enterprise software, cloud computing services, and consumer electronics. Its extensive software portfolio, including Windows operating systems and Office suites, has historically been associated with a high volume of Common Vulnerabilities and Exposures (CVEs), currently totaling 8,272. Common vulnerability classes affecting these products include remote code execution, cross-site scripting, and privilege escalation, often stemming from complex legacy codebases and extensive feature sets. Notable security incidents include the 2021 SolarWinds supply chain compromise, which impacted Microsoft’s Orion platform, and various critical zero-day exploits in Internet Explorer and Edge browsers. The company maintains a dedicated security response team and regularly issues patches through Windows Update to mitigate these risks, though the sheer scale of its ecosystem continues to present significant attack surfaces for threat actors seeking unauthorized access or data exfiltration.

CVE ID	Title	CVSS	Severity	Published
CVE-2023-35357	Windows Kernel Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-125	7.8	High	2023-07-11
CVE-2023-35356	Windows Kernel Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-843	7.8	High	2023-07-11
CVE-2023-35353	Connected User Experiences and Telemetry Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-59	7.8	High	2023-07-11
CVE-2023-35343	Windows Geolocation Service Remote Code Execution Vulnerability — Windows 10 Version 1809CWE-426	7.8	High	2023-07-11
CVE-2023-35342	Windows Image Acquisition Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-59	7.8	High	2023-07-11
CVE-2023-35341	Microsoft DirectMusic Information Disclosure Vulnerability — Windows 10 Version 1809CWE-190	6.2	Medium	2023-07-11
CVE-2023-35340	Windows CNG Key Isolation Service Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-591	7.8	High	2023-07-11
CVE-2023-35339	Windows CryptoAPI Denial of Service Vulnerability — Windows 10 Version 1809CWE-400	7.5	High	2023-07-11
CVE-2023-35338	Windows Peer Name Resolution Protocol Denial of Service Vulnerability — Windows 10 Version 1809CWE-476	7.5	High	2023-07-11
CVE-2023-35336	Windows MSHTML Platform Security Feature Bypass Vulnerability — Windows 10 Version 1809CWE-20	6.5	Medium	2023-07-11
CVE-2023-35332	Windows Remote Desktop Protocol Security Feature Bypass — Windows 10 Version 1809CWE-326	6.8	Medium	2023-07-11
CVE-2023-35330	Windows Extended Negotiation Denial of Service Vulnerability — Windows 10 Version 1809CWE-126	7.5	High	2023-07-11
CVE-2023-35329	Windows Authentication Denial of Service Vulnerability — Windows 10 Version 1809CWE-400	6.5	Medium	2023-07-11
CVE-2023-35328	Windows Transaction Manager Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-197	7.8	High	2023-07-11
CVE-2023-35326	Windows CDP User Components Information Disclosure Vulnerability — Windows 10 Version 1809CWE-908	5.5	Medium	2023-07-11
CVE-2023-35325	Windows Print Spooler Information Disclosure Vulnerability — Windows 10 Version 1809CWE-908	7.5	High	2023-07-11
CVE-2023-35324	Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability — Windows 10 Version 1809CWE-126	5.5	Medium	2023-07-11
CVE-2023-35320	Connected User Experiences and Telemetry Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-59	7.8	High	2023-07-11
CVE-2023-35319	Remote Procedure Call Runtime Denial of Service Vulnerability — Windows 10 Version 1809CWE-125	6.5	Medium	2023-07-11
CVE-2023-35318	Remote Procedure Call Runtime Denial of Service Vulnerability — Windows 10 Version 1809CWE-125	6.5	Medium	2023-07-11
CVE-2023-35316	Remote Procedure Call Runtime Information Disclosure Vulnerability — Windows 10 Version 1809CWE-125	6.5	Medium	2023-07-11
CVE-2023-35315	Windows Layer-2 Bridge Network Driver Remote Code Execution Vulnerability — Windows 10 Version 1809CWE-190	8.8	High	2023-07-11
CVE-2023-35314	Remote Procedure Call Runtime Denial of Service Vulnerability — Windows 10 Version 1809CWE-125	6.5	Medium	2023-07-11
CVE-2023-35313	Windows Online Certificate Status Protocol (OCSP) SnapIn Remote Code Execution Vulnerability — Windows 10 Version 1809CWE-416	7.8	High	2023-07-11
CVE-2023-32049	Windows SmartScreen Security Feature Bypass Vulnerability — Windows 10 Version 1809	8.8	High	2023-07-11
CVE-2023-32046	Windows MSHTML Platform Elevation of Privilege Vulnerability — Windows 10 Version 1809	7.8	High	2023-07-11
CVE-2023-32044	Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability — Windows 10 Version 1809CWE-125	7.5	High	2023-07-11
CVE-2023-32045	Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability — Windows 10 Version 1809CWE-125	7.5	High	2023-07-11
CVE-2023-32042	OLE Automation Information Disclosure Vulnerability — Windows 10 Version 1809CWE-908	6.5	Medium	2023-07-11
CVE-2023-32043	Windows Remote Desktop Security Feature Bypass Vulnerability — Windows 10 Version 1809CWE-327	6.8	Medium	2023-07-11

This page lists every published CVE security advisory associated with Microsoft. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

Microsoft — Vulnerabilities & Security Advisories 8444