Patches

Fixing what’s really important.

The goal of 0patch is not to micropatch every vulnerability but the important ones, such as those exploited in the wild or those without official vendor patches. These are some of our most popular micropatches.

15.3.2024
New

CVE-2024-21413 Microsoft Outlook    

Microsoft Outlook "MonikerLink" Remote Code Execution Vulnerability

23.2.2023
New

CVE-2023-35636 Microsoft Outlook    

Microsoft Outlook Information Disclosure Vulnerability

19.2.2024
New

CVE-2022-37981 Microsoft Windows OverLog    

Event Log "OverLog" Denial of Service

9.2.2024
New

NO CVE Microsoft Windows LogCrusher    

Event Log "LogCrusher" Denial of Service

6.2.2024
New

CVE-2023-36003 Microsoft Windows    

Microsoft Windows XAML diagnostics API Elevation of Privilege

31.1.2024
New
0day

NO CVE Microsoft Windows EventLogCrasher  

Windows Event Log Denial of Service

12.12.2023

CVE-2023-36025,CVE-2024-21412 Microsoft Windows    

SmartScreen Security Feature Bypass

24.11.2023
0day

NO CVE Microsoft Access  

Microsoft Access Information Disclosure

10.11.2023
Exploited

CVE-2023-36563 Microsoft WordPad    

Microsoft WordPad Information Disclosure

23.10.2023
0day

NO CVE Microsoft Office  

Microsoft Word Mark of the Web Bypass

23.10.2023

CVE-2023-33150 Microsoft Office    

Security Feature Bypass Vulnerability

9.10.2023

CVE-2023-36906 Microsoft Windows    

CNG Key Isolation Service Information Disclosure

9.10.2023
Exploited

CVE-2023-28229 Microsoft Windows    

CNG Key Isolation Service Elevation of Privilege

13.9.2023
Exploited

CVE-2023-36874 Microsoft Windows    

Windows Error Reporting Service Elevation of Privilege

6.9.2023
Exploited

CVE-2023-36884 Microsoft Windows and Microsoft Office    

Windows Search Remote Code Execution

21.7.2023
0day
Exploited

CVE-2023-36884 mitigation Microsoft Windows and Microsoft Office    

Office and Windows HTML Remote Code Execution

14.7.2023

CVE-2023-21769 Microsoft Windows    

Message Queuing Denial of Service

14.7.2023

CVE-2023-28302, CVE-2023-21554 Microsoft Windows    

Message Queuing Denial of Service

30.6.2023

CVE-2023-21541 Microsoft Windows    

Task Scheduler Elevation of Privilege

30.6.2023

CVE-2023-28231 Microsoft Windows    

DHCP Server Service Remote Code Execution

5.6.2023

CVE-2023-29325 Microsoft Windows    

OLE Remote Code Execution

30.5.2023

CVE-2023-21554 Microsoft Windows QueueJumper    

Message Queuing Remote Code Execution

19.4.2023

CVE-2023-21800 Microsoft Windows    

Elevation of Privilege in Windows Installer

22.3.2023
Exploited

CVE-2023-23397, CVE-2023-29324, CVE-2023-35384, CVE-2024-20652 Microsoft Office    

Notification File NTLM Hash Theft

9.3.2023

CVE-2023-21716 Microsoft Word    

Remote Code Execution in Microsoft Word

1.3.2023

CVE-2022-34689 Microsoft Windows    

CryptoAPI Spoofing

1.3.2023
Exploited

CVE-2022-41033 Microsoft Windows    

COM+ Event System Service Elevation of Privilege

16.02.2023
0day

CVE-2022-44666 Microsoft Windows malcontact  

Contacts Arbitrary Code Execution

09.02.2023

CVE-2023-21746 Microsoft Windows    

LocalPotato NTLM Elevation of Privilege

31.1.2023

CVE-2023-21752 Microsoft Windows    

Windows Backup Service EoP

23.1.2023

CVE-2022-37973 Microsoft Windows    

Local Session Manager (LSM) Denial of Service Vulnerability

23.1.2023

CVE-2022-37998 Microsoft Windows    

Local Session Manager (LSM) Denial of Service

19.12.2022
Exploited

CVE-2022-41128 Internet Explorer    

Type confusion in Internet Explorer's JScript9 engine

1.12.2022

CVE-2022-35841 Microsoft Windows    

Enterprise App Management Service Remote Code Execution

28.10.2022
Exploited

CVE-2022-44698, CVE-2023-24880 Microsoft Windows    

Bypassing MotW Security Warning with Invalid Signature

26.10.2022

CVE-2022-30206 Microsoft Windows    

Print Spooler Elevation of Privilege

26.10.2022

CVE-2022-21997 Microsoft Windows    

Print Spooler Elevation of Privilege

25.10.2022

CVE-2022-33647, CVE-2022-33679, CVE-2023-28244 Microsoft Windows    

Elevation of Privilege in Kerberos

17.10.2022
Exploited

No CVE Microsoft Windows    

Preventing MOTW on Unzipped File

5.10.2022

CVE-2022-34721 Microsoft Windows    

RCE in Internet Key Exchange (IKE) Protocol Extensions

30.9.2022

CVE-2022-35756 Microsoft Windows    

Windows Kerberos Elevation of Privilege

12.9.2022

CVE-2022-35742 Microsoft Outlook    

Microsoft Outlook Content-Type Denial of Service

8.9.2022

CVE-2022-21849 Microsoft Windows    

Windows IKE Extension Remote Code Execution

31.8.2022

No CVE Microsoft Windows    

Print Spooler SplEnumForms Elevation of Privilege

31.8.2022

CVE-2022-30166 Microsoft Windows    

Local Security Authority Subsystem Service LPE

revoked

2022-08-10

No CVE Microsoft Windows KrbRelay    

KrbRelay Local Privilege Escalation

2022-07-01
0day

No CVE Microsoft Windows DFSCoerce    

Distributed File System "DFSCoerce" Privilege Escalation

Vendor decided not to fix it

2022-06-27
0day

No CVE Microsoft Windows PrinterBug/SpoolSample    

Print Spooler "PrinterBug/SpoolSample" Privilege Escalation

Vendor decided not to fix it

2022-06-07
0day

CVE-2022-34713 Microsoft Windows DogWalk    

Microsoft Diagnostic Tools "DogWalk" Package File Traversal

Vendor decided not to fix it

2022-06-01
Exploited

CVE-2022-30190 Microsoft Windows Follina    

ms-msdt URL Protocol "Follina" PowerShell RCE

Follina

2022-05-17

CVE-2022-26809, CVE-2022-22019 Microsoft Windows    

Remote Procedure Call Runtime Integer Overflow

2022-05-10

CVE-2022-21990 Microsoft Windows    

Remote Desktop Client Remote Code Execution

2022-03-10

CVE-2022-21974 Microsoft Windows    

Windows Runtime Remote Code Execution Vulnerability

2022-03-10

CVE-2022-21971 Microsoft Windows    

Windows Runtime Remote Code Execution Vulnerability

2022-03-09
Exploited

CVE-2022-21999 Microsoft Windows SpoolFool    

Windows Print Spooler Elevation of Privilege

SpoolFool

2022-02-18
Exploited

CVE-2021-42278 Microsoft Windows    

Active Directory Domain Services Elevation of Privilege

2022-01-12

No CVE Microsoft Windows Remote Potato0    

Remote Potato0 Privilege Escalation

2021-12-23

No CVE Microsoft Windows    

ms-officecmd Remote Code Execution

2021-12-02
Exploited

CVE-2021-43883 Microsoft Windows    

Windows InstallerFileTakeOver Local Privilege Escalation

2021-11-26

CVE-2021-24084 Microsoft Windows    

Mobile Device Management Local Privilege Escalation

2021-11-19

CVE-2021-40469 Microsoft Windows Server    

DNS Server RCE by DNSAdmins

2021-11-10
Exploited

CVE-2021-34484 Microsoft Windows    

Windows User Profile Service Elevation of Privilege

2021-10-11

CVE-2021-34480 Microsoft Windows    

Scripting Engine Memory Corruption

2021-09-24
Exploited

CVE-2021-40444 Microsoft Windows    

MSHTML Remote Code Execution

2021-08-23
Exploited

CVE-2021-33742 Microsoft Windows    

MSHTML Remote Code Execution

2021-08-06
Exploited

CVE-2021-36942 Microsoft Windows PetitPotam    

PetitPotam NTLM Relay Attack

PetitPotam

2021-08-05
Exploited

CVE-2021-36958 Microsoft Windows    

Malicious printer driver local privilege escalation

2021-08-02
Exploited

CVE-2020-0787 Microsoft Windows    

Background Intelligent Transfer Service Elevation of Privilege

2021-07-02
Exploited

CVE-2021-34527 Microsoft Windows PrintNightmare    

Print Spooler Remote Code Execution

PrintNightmare

2021-06-14

CVE-2021-31959 Internet Explorer    

Scripting Engine Memory Corruption

2021-05-18

CVE-2021-26419 Internet Explorer    

Scripting Engine Memory Corruption

2021-05-06

CVE-2021-26415 Microsoft Windows    

Windows Installer Elevation of Privilege

2021-03-23

CVE-2021-26897 Microsoft Windows Server    

Windows DNS Server SIG Record Buffer Overflow

2021-03-23

CVE-2021-26877 Microsoft Windows Server    

Windows DNS Server TXT Record Out-Of-Bounds Read

2021-02-11
Exploited

CVE-2021-26411 Internet Explorer    

HTML Attribute nodeValue Double Free

2021-02-09

CVE-2020-1030 Microsoft Windows    

Print Spooler Elevation of Privilege

2021-01-28

CVE-2021-1727 Microsoft Windows    

Windows Installer config.msi Local Privilege Escalation

2021-01-07

CVE-2021-1733 Microsoft PsExec    

PsExec Local Privilege Escalation

2020-12-23

CVE-2020-1013 Microsoft Windows    

WSUS Spoofing

2020-12-02

CVE-2020-17001 Microsoft Windows    

Print Spooler Elevation of Privilege

2020-11-25

CVE-2021-27091 Microsoft Windows    

Windows RpcEptMapper and Dnscache Service Insecure Registry Permissions EoP

2020-11-17

CVE-2020-1300 Microsoft Windows    

Cabinet File Directory Traversal RCE

2020-10-27

CVE-2021-1640 Microsoft Windows    

Print Spooler Arbitrary File Creation

2020-10-16

CVE-2020-1062 Microsoft Windows    

JScript Garbage Collection RCE

2020-10-16
Exploited

CVE-2020-0968 Microsoft Windows    

Scripting Engine Memory Corruption

2020-09-17
Exploited

CVE-2020-1472 Microsoft Windows Zerologon    

Netlogon Elevation of Privilege

Zerologon

2020-09-14
Exploited

CVE-2020-1380 Microsoft Windows    

Scripting Engine Memory Corruption

2020-09-09

CVE-2020-1530 Microsoft Windows    

Remote Access Phonebook Use-After-Free

2020-09-01

CVE-2020-1337 Microsoft Windows    

Elevation of Privilege in Print Spooler

2020-08-11

CVE-2020-1113 Microsoft Windows    

Task Scheduler Security Feature Bypass

2020-07-17

CVE-2020-1350 Microsoft Windows SIGRed    

DNS Server Remote Code Execution

SIGRed

2020-07-16

CVE-2020-0662 Microsoft Windows    

Memory Corruption in DHCP Message Processing

2020-07-09

Unknown CVE Zoom Client for Windows    

Remote Code Execution

2020-06-26

CVE-2020-1299 Microsoft Windows    

LNK Remote Code Execution

2020-06-16

CVE-2020-1281 Microsoft Windows    

OLE Remote Code Execution

2020-06-09
Exploited

CVE-2017-8570 Microsoft Office    

Microsoft Office Remote Code Execution Vulnerability

2020-05-27

CVE-2020-1015 Microsoft Windows    

User-Mode Power Service Memory Corruption

2020-05-20
Exploited

CVE-2020-1048 Microsoft Windows PrintDemon    

Print Spooler Elevation of Privilege

PrintDemon

2020-04-22

CVE-2020-0687 Microsoft Windows    

Microsoft Graphics Remote Code Execution

2020-04-03

CVE-2020-0729 Microsoft Windows    

Microsoft LNK Remote Code Execution

2020-03-26
Exploited

CVE-2020-0938, CVE-2020-1020 Microsoft Windows  

Microsoft Type 1 Font Parsing Remote Code Execution

workaround

2020-03-20

CVE-2020-0668 Microsoft Windows    

Windows Service Tracing Elevation of Privilege

2020-03-19

CVE-2020-0881 Microsoft Windows    

Microsoft GDI+ Remote Code Execution

2020-03-12
Exploited

CVE-2020-0683 Microsoft Windows    

Microsoft Windows Installer Elevation of Privilege

2020-02-11
Exploited

CVE-2012-0158 Microsoft Office    

MSCOMCTL ActiveX Buffer Overflow

2020-01-28
Exploited

CVE-2017-11774 Microsoft Outlook    

Arbitrary Code Execution Via Home Page

a fix for an old but still exploited vulnerability used by Iranian-sponsored groups

2020-01-20
Exploited

CVE-2020-0674 Internet Explorer  

Scripting Engine Memory Corruption

workaround

2019-12-20
0day

Unkonwn CVE Dropbox  

Updater Arbitrary File Overwrite

2019-11-28
Exploited

CVE-2019-1429 Internet Explorer    

Microsoft Scripting Engine Memory Corruption

2019-11-21

CVE-2019-5047 NitroPDF    

CharProcs Remote Code Execution

2019-10-18

CVE-2019-5048 NitroPDF    

ICCBased Color Space Remote Code Execution

2019-10-15

CVE-2019-5053 NitroPDF    

Stream Length Memory Corruption

2019-10-14

CVE-2019-5050 NitroPDF    

Page Kids Remote Code Execution

2019-05-31
Exploited

CVE-2019-1069 Microsoft Windows BearLPE    

Local Privilege Escalation in Task Scheduler

BearLPE

2019-05-24
Exploited

CVE-2019-0708 Microsoft Windows BlueKeep    

Remote Code Execution in Remote Desktop Services

BlueKeep

2019-04-25

CVE-2017-0176 Microsoft Windows XP/Server 2003 EsteemAudit    

Microsoft Windows XP SP3/Server 2003 SP2 RDP privilege escalation

EsteemAudit

2019-04-19

Unknown CVE Oracle Java    

Oracle Java RE out-of-bounds read during TTF font rendering in ExtractBitMap_blocClass

2019-04-16

CVE-2019-1054 Microsoft Internet Explorer  

Missing Error Check on Reading Mark-Of-The-Web

Microsoft Edge uses a secret trick and breaks Internet Explorer's security

2019-04-04

Unknown CVE Oracle Java    

Oracle Java RE out-of-bounds read in AlternateSubstitutionSubtable::process

2019-04-04

Unknown CVE Oracle Java    

Oracle Java RE out-of-bounds read in OpenTypeLayoutEngine::adjustGlyphPositions

2019-02-21
Exploited

CVE-2018-20250 RARLAB WinRAR  

WinRAR ACE Path Traversal

2019-02-13

CVE-2018-16858 OpenOffice    

OpenOffice Python Script Handler Directory Traversal

2019-02-13

CVE-2018-16858 LibreOffice  

LibreOffice Python Script Handler Directory Traversal

2019-02-11

CVE-2019-7089 Adobe Acrobat Reader DC  

Adobe Reader Callback Via UNC Path

2019-01-22
0day

No CVE Microsoft Windows  

Microsoft Windows Contacts Arbitrary Code Execution

2019-01-21

CVE-2019-0636 Microsoft Windows readfile  

MsiAdvertiseProduct Unauthorized File Read

readfile

2019-01-17
Exploited

CVE-2019-0863 Microsoft Windows AngryPolarBearBug    

Error Reporting Local Privilege Escalation

AngryPolarBearBug

2018-11-21

CVE-2018-0952 Microsoft Windows  

Microsoft Diagnostic Hub Standard Collector Elevation Of Privilege

2018-10-24

CVE-2018-8584 Microsoft Windows deletebug  

Microsoft Data Sharing Service Arbitrary File Delete

deletebug

2018-09-21

CVE-2018-8423 Microsoft Windows  

Out-Of-Bounds Write in Microsoft Jet Database Engine

Outrunning Attackers On The Jet Database Engine 0day

2018-09-19

CVE-2017-16720 Advantech WebAccess  

Advantech WebAccess webvrpcs "Draw" Remote Code Execution

2018-09-19

No CVE Advantech WebAccess  

Advantech WebAccess webvrpcs "View" Remote Code Execution

2018-09-10

CVE-2018-8353 Microsoft Windows  

Microsoft Scripting Engine Memory Corruption

2018-09-05

CVE-2018-8440 Microsoft Windows  

Microsoft Windows Task Scheduler ALPC Local Privilege Escalation

Publicly Dropped 0day in Task Scheduler

2018-08-24
Exploited

CVE-2018-8414 Microsoft Windows  

Microsoft Windows "SettingContent-ms" Remote Code Execution

Initially rejected for patching by Microsoft

2018-08-10

CVE-2018-12815 Adobe Acrobat Reader DC  

Adobe Acrobat Reader DC JSON Stringify Remote Code Execution

2018-08-07

CVE-2018-8242 Microsoft Windows  

Microsoft Scripting Engine Memory Corruption

2018-07-27

CVE-2018-12756 Adobe Acrobat Reader DC  

Adobe Acrobat Reader Use-After-Free memory corruption

2018-05-30

CVE-2017-17557 Foxit Reader  

Foxit Reader Arbitrary Code Execution

2018-05-14
Exploited

CVE-2018-8174 Microsoft Windows  

Microsoft Windows VBScript Engine Remote Code Execution

A micropatch instead of the official update that probably broke your network

2018-03-30
Exploited

CVE-2017-7269 Microsoft Windows Immortal  

Buffer overflow in WebDAV service ScStoragePathFromUrl

Heavily exploited in the wild for 9 months

2018-02-20
Exploited

CVE-2018-0802 Microsoft Windows Office  

Microsoft Office Equation Editor Memory Corruption

The Bug That Killed Equation Editor

2018-02-19
Exploited

CVE-2018-5996 7-Zip  

7-Zip Memory Corruptions via RAR PPMd

2018-02-12
Exploited

CVE-2018-0798 Microsoft Windows Office  

Microsoft Equation Editor Memory Corruption

Bringing back abandoned MS Equation Editor

2018-02-12

CVE-2017-17969 7-Zip  

7-Zip Heap Buffer Overflow

2017-11-23
Exploited

CVE-2017-11882 Microsoft Windows  

MS Office Equation Editor Memory Corruption

2017-11-09

CVE-2017-11826 Microsoft Windows  

Microsoft Word OOXML Parser Memory Corruption

2017-10-25

No CVE Microsoft Windows  

Microsoft Office DDE/DDEAUTO Remote Code Execution

It's a feature, not a bug

2017-10-04

CVE-2017-4924 VMware Workstation  

VMware Workstation Shader Out-Of-Bounds Write

Micropatching a hypervisor with running virtual machines

2017-10-02

CVE-2017-11281 Adobe Flash Player  

Adobe Flash Player Remote Memory Corruption

2017-09-29

CVE-2017-11282 Adobe Flash Player  

Adobe Flash Player Remote Memory Corruption

2017-09-21

CVE-2017-0022 Microsoft Windows  

Microsoft XML Core Services Information Disclosure

Exploit kit rendezvous

2017-09-07

CVE-2017-8464 Microsoft Windows  

Microsoft LNK Remote Code Execution

The New Stuxnet Windows LNK Vulnerability

2017-09-01

CVE-2017-2779 National Instruments LabVIEW  

LabVIEW RSRC Arbitrary Null Write Code Execution

2017-08-24

CVE-2017-10952 Foxit Reader  

Foxit Reader saveAs Arbitrary File Write

A logical bug patched

2017-07-10

CVE-2017-0283 Microsoft Windows  

Microsoft Windows Uniscribe Remote Code Execution

2017-07-04

CVE-2013-2472 Oracle Java  

Oracle Java ShortComponentRaster.verify() Memory Corruption

2017-05-15

CVE-2017-0290 Microsoft Windows  

Microsoft Malware Protection Engine Type Confusion

Worst windows remote code execution

2017-04-04

CVE-2013-2473 Oracle Java  

Oracle Java Blit function heap buffer overflow

2017-04-04

CVE-2013-2471 Oracle Java  

Oracle Java IntegerInterleavedRaster.verify() Signed Integer Overflow

2017-04-04

CVE-2013-2470 Oracle Java  

Oracle Java lookupByteBI function heap buffer overflow

2017-03-09
Exploited

CVE-2017-0037 Microsoft Windows  

Internet Explorer 11 Type confusion in HandleColumnBreakOnColumnSpanningElement

2017-02-28

CVE-2017-0038 Microsoft Windows  

Microsoft Windows gdi32.dll EMF file information disclosure

2016-09-02

No CVE 0patch Agent  

Module loading logical error in 0patch Loader (functional flaw)

Patch to self, functional flaw

2016-07-26

CVE-2016-3740 Foxit Reader  

Foxit Reader ConvertToPDF TIFF SamplesPerPixel Parsing Heap Buffer Overflow

2016-06-17

CVE-2016-1077 Adobe Acrobat Reader DC  

Adobe Acrobat Reader Deflate Use-After-Free

2016-01-26

CVE-2015-6130 Microsoft Windows  

Integer Underflow in Unicode Script Processor

2016-01-19

CVE-2014-6321 Microsoft Windows  

Windows schannel remote code execution (MS14-066)

First micropatch released on Twitter

2015-06-03

CVE-2013-7409 AllPlayer  

AllPlayer 5.8 Buffer Overflow In .M3u File

2015-06-03

CVE-2013-6877 RealPlayer  

RealPlayer 16.0.2.32 Buffer Overflow In .rmp File

2015-05-14

CVE-2011-1260 Microsoft Windows  

Internet Explorer 8 MS11-050 MSHTML use-after-free

2015-05-13

CVE-2011-2371 Mozilla Firefox  

Firefox 3.6.16 ReduceRight() Integer Overflow

2015-03-27

No CVE Foxit Reader  

Foxit Reader 4.1.1 Stack Buffer Overflow

2015-03-04

CVE-2008-2992 Adobe Acrobat Reader  

Adobe util.printf() Buffer Overflow

2015-03-03

CVE-2009-0927 Adobe Acrobat Reader  

Adobe Collab.getIcon() Buffer Overflow

2015-03-02

CVE-2013-2463 Oracle Java  

Oracle Java BytePackedRaster.verify() Signed Integer Overflow

2015-02-26

CVE-2013-2465 Oracle Java  

Oracle Java storeImageArray function heap buffer overflow

2015-02-23

CVE-2014-0160 OpenSSL  

OpenSSL Heartbeat (Heartbleed) Information Leak

Our first public micropatch