James Forshaw

James is a security researcher in Google’s Project Zero. He has been involved with computer hardware and software security for over 10 years looking at a range of different platforms and applications. With a great interest in logical vulnerabilities he’s been listed as the #1 researcher for MSRC, as well as being a Pwn2Own and Microsoft Mitigation Bypass bounty winner. He has spoken at a number of security conferences including Black Hat USA, CanSecWest, Bluehat, HITB, and Infiltrate.




CVEs Disclosed by James Forshaw

09/11 CVE-2020-0886

An elevation of privilege vulnerability exists when the Windows Storage Services improperly handle file operations, aka...

7.8 HIGH
09/11 CVE-2020-1471

An elevation of privilege vulnerability exists when Microsoft Windows CloudExperienceHost fails to check COM objects,...

7.8 HIGH
08/17 CVE-2020-1377

An elevation of privilege vulnerability exists when the Windows Kernel API improperly handles registry objects in...

7.8 HIGH
08/17 CVE-2020-1509

An elevation of privilege vulnerability exists in the Local Security Authority Subsystem Service (LSASS) when an...

8.8 HIGH
08/17 CVE-2020-1378

An elevation of privilege vulnerability exists when the Windows Kernel API improperly handles registry objects in...

7.8 HIGH
07/14 CVE-2020-1463

An elevation of privilege vulnerability exists in the way that the SharedStream Library handles objects in memory, aka...

7.8 HIGH
04/15 CVE-2020-0981

A security feature bypass vulnerability exists when Windows fails to properly handle token relationships.An attacker who...

8.8 HIGH
08/14 CVE-2019-1170

An elevation of privilege vulnerability exists when reparse points are created by sandboxed processes allowing sandbox...

8.8 HIGH
07/15 CVE-2019-1089

An elevation of privilege vulnerability exists in rpcss.dll when the RPC service Activation Kernel improperly handles an...

7.8 HIGH
06/12 CVE-2019-0959

An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles...

7.8 HIGH

This page is open source. Noticed a typo? Or something missing?

Improve this page