CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

133 matches found

Microsoft CVE•added 2025/07/08 2:0 p.m.•3 views

Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability

Missing support for integrity check in Windows Virtualization-Based Security VBS Enclave allows an authorized attacker to elevate privileges locally...

6.7CVSS6.6AI score0.00399EPSS

Exploits0

CNNVD•added 2025/07/08 12:0 a.m.•1 views

Microsoft Windows Virtualization-Based Security Enclave 安全漏洞

Microsoft Windows Virtualization-Based Security Enclave Microsoft Windows VBS Enclave is a software-based trusted execution environment in the address space of host applications from Microsoft Corporation USA. A security vulnerability exists in Microsoft Windows Virtualization-Based Security...

7.8CVSS6.4AI score0.0082EPSS

Exploits0References2

Positive Technologies•added 2025/07/08 12:0 a.m.•1 views

PT-2025-28536 · Microsoft · Windows Virtualization-Based Security +1

Name of the Vulnerable Software and Affected Versions: Windows Virtualization-Based Security VBS affected versions not specified Description: The issue concerns a lack of integrity check support in Windows Virtualization-Based Security VBS Enclave, allowing an authorized attacker to locally eleva...

6.8CVSS5.8AI score0.00399EPSS

Exploits0References7

CNNVD•added 2025/07/08 12:0 a.m.•1 views

Microsoft Windows Virtualization-Based Security Enclave 安全漏洞

6.7CVSS6.4AI score0.00399EPSS

Exploits0References1

CNNVD•added 2025/07/08 12:0 a.m.•1 views

Microsoft Windows Virtualization-Based Security Enclave 安全漏洞

6.7CVSS6.4AI score0.00399EPSS

Exploits0References1

Positive Technologies•added 2025/07/08 12:0 a.m.•1 views

PT-2025-28507 · Microsoft · Windows Virtualization-Based Security +2

Name of the Vulnerable Software and Affected Versions: Windows Virtualization-Based Security VBS Enclave affected versions not specified Description: The issue is related to a protection mechanism failure in Windows Virtualization-Based Security VBS Enclave, allowing an authorized attacker to...

7.8CVSS5.7AI score0.0082EPSS

Exploits0References6

CVE•added 2025/06/10 5:2 p.m.•71 views

CVE-2025-47969

CVE-2025-47969 is a Windows Hello information-disclosure vulnerability. It affects Windows Hello components and enables a local attacker with high privileges to disclose sensitive data via the Windows Hello flow. The CVSS vector indicates Local access, low attack complexity, and high confidential...

4.4CVSS4.4AI score0.00973EPSS

Exploits0References1Affected Software4

Vulnrichment•added 2025/06/10 5:2 p.m.•3 views

CVE-2025-47969 Windows Virtualization-Based Security (VBS) Information Disclosure Vulnerability

...

4.4CVSS7.2AI score0.00973EPSS

Exploits0References1

Cvelist•added 2025/06/10 5:2 p.m.•8 views

CVE-2025-47969 Windows Virtualization-Based Security (VBS) Information Disclosure Vulnerability

...

4.4CVSS0.00973EPSS

Exploits0References1

OSV•added 2025/04/08 6:16 p.m.•1 views

CVE-2025-27735

Insufficient verification of data authenticity in Windows Virtualization-Based Security VBS Enclave allows an authorized attacker to bypass a security feature locally...

6CVSS7.3AI score0.00413EPSS

Exploits0References1

NVD•added 2025/04/08 6:16 p.m.•29 views

CVE-2025-27735

Insufficient verification of data authenticity in Windows Virtualization-Based Security VBS Enclave allows an authorized attacker to bypass a security feature locally...

6CVSS0.00413EPSS

Exploits0References1

CVE•added 2025/04/08 5:24 p.m.•92 views

CVE-2025-27735

CVE-2025-27735 affects Windows Virtualization-Based Security (VBS) Enclave. The root cause is insufficient verification of data authenticity, enabling an authorized local attacker to bypass a security feature. The connected NCSC listing labels the impact as bypassing a security measure with CVSS ...

6CVSS7.1AI score0.00413EPSS

Exploits0References1Affected Software13

Vulnrichment•added 2025/04/08 5:24 p.m.•13 views

CVE-2025-27735 Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability

...

6CVSS7.2AI score0.00413EPSS

Exploits0References1

Microsoft CVE•added 2025/04/08 7:0 a.m.•14 views

Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability

Insufficient verification of data authenticity in Windows Virtualization-Based Security VBS Enclave allows an authorized attacker to bypass a security feature locally...

6CVSS6.9AI score0.00413EPSS

Exploits0

Positive Technologies•added 2025/04/08 12:0 a.m.•1 views

PT-2025-15558 · Microsoft · Windows Virtualization-Based Security (Vbs) Enclave +1

Name of the Vulnerable Software and Affected Versions: Windows Virtualization-Based Security VBS Enclave affected versions not specified Description: The issue is related to insufficient verification of data authenticity, allowing an authorized attacker to bypass a security feature locally. There...

6.2CVSS8.3AI score0.00413EPSS

Exploits0References7

Positive Technologies•added 2025/02/27 12:0 a.m.•1 views

PT-2025-8923 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: A vulnerability has been discovered in Windows Virtualization-Based Security. The issue was disclosed on 2025-02-25 and a patch was released in February 2025 Patch Tuesday. It was discovere...

5.3CVSS9.2AI score0.00384EPSS

Exploits0References8

OSV•added 2025/01/14 6:16 p.m.•0 views

CVE-2025-21370

Windows Virtualization-Based Security VBS Enclave Elevation of Privilege Vulnerability...

8.8CVSS7.3AI score0.00677EPSS

Exploits0References1

NVD•added 2025/01/14 6:16 p.m.•8 views

CVE-2025-21370

Windows Virtualization-Based Security VBS Enclave Elevation of Privilege Vulnerability...

8.8CVSS0.00677EPSS

Exploits0References1