Microsoft Microsoft Malware Protection Engine

13 CVEs affecting Microsoft Microsoft Malware Protection Engine. Latest disclosed: 2026-05-20. Critical: 0, High: 9.

Top CVEs affecting Microsoft Microsoft Malware Protection Engine
CVE	Severity	Score	Published	Summary
`CVE-2026-45584`	High	`8.1`	2026-05-20	Heap-based buffer overflow in Microsoft Defender allows an unauthorized attacker to execute code over a network.
`CVE-2026-41091`	High	`7.8`	2026-05-20	Improper link resolution before file access ('link following') in Microsoft Defender allows an authorized attacker to elevate privileges locally.
`CVE-2021-42298`	High	`7.8`	2021-11-10	Microsoft Defender Remote Code Execution Vulnerability
`CVE-2021-34471`	High	`7.8`	2021-08-12	Microsoft Windows Defender Elevation of Privilege Vulnerability
`CVE-2021-34464`	High	`7.8`	2021-07-16	Microsoft Defender Remote Code Execution Vulnerability
`CVE-2021-34522`	High	`7.8`	2021-07-14	Microsoft Defender Remote Code Execution Vulnerability
`CVE-2021-31985`	High	`7.8`	2021-06-08	Microsoft Defender Remote Code Execution Vulnerability
`CVE-2023-24860`	High	`7.5`	2023-04-11	Microsoft Defender Denial of Service Vulnerability
`CVE-2022-37971`	High	`7.1`	2022-10-11	Microsoft Windows Defender Elevation of Privilege Vulnerability
`CVE-2023-33156`	Medium	`6.3`	2023-07-11	Microsoft Defender Elevation of Privilege Vulnerability
`CVE-2023-23389`	Medium	`6.3`	2023-03-14	Microsoft Defender Elevation of Privilege Vulnerability
`CVE-2022-24548`	Medium	`5.5`	2022-04-15	Microsoft Defender Denial of Service Vulnerability
`CVE-2021-31978`	Medium	`5.5`	2021-06-08	Microsoft Defender Denial of Service Vulnerability