windows_defender

microsoft / windows_defender

An elevation of privilege vulnerability exists when Windows Defender antimalware platform improperly handles hard links, aka 'Windows Defender Antimalware Platform Hard Link Elevation of Privilege Vulnerability'.

Published Apr 15, 2020

CVE-2020-1163

microsoft / windows_defender+4

An elevation of privilege vulnerability exists in Windows Defender that leads arbitrary file deletion on the system.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Windows Defender Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1170.

Published Jun 9, 2020

CVE-2023-38175

microsoft / windows_defender

Microsoft Windows Defender Elevation of Privilege Vulnerability

Published Aug 8, 2023

CVE-2023-36422

microsoft / windows_defender

Microsoft Windows Defender Elevation of Privilege Vulnerability

Published Nov 14, 2023

CVE-2021-1647

microsoft / windows_defender+4

Microsoft Defender Remote Code Execution Vulnerability

Published Jan 12, 2021

CVE-2020-1170

microsoft / windows_defender+4

An elevation of privilege vulnerability exists in Windows Defender that leads arbitrary file deletion on the system.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Windows Defender Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1163.

Published Jun 9, 2020

CVE-2021-24092

Microsoft Defender Elevation of Privilege Vulnerability

Published Feb 25, 2021

CVE-2019-1255

HIGH7.5

A denial of service vulnerability exists when Microsoft Defender improperly handles files, aka 'Microsoft Defender Denial of Service Vulnerability'.

Network

Published Sep 23, 2019

CVE-2020-1461

HIGH7.1

An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Defender Elevation of Privilege Vulnerability'.

Published Jul 14, 2020

CVE-2019-1161

HIGH7.1

An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations. To exploit the vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted command that could exploit the vulnerability and delete protected files on an affected system once MpSigStub.exe ran again. The update addresses the vulnerability and blocks the arbitrary deletion.

Published Aug 14, 2019

CVE-2020-1002

HIGH7.1

An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Defender Elevation of Privilege Vulnerability'.