Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3872 matches found

Positive Technologies
Positive Technologiesadded 2026/01/13 12:0 a.m.3 views

PT-2026-2662

Name of the Vulnerable Software and Affected Versions Windows versions prior to the patchday containing the fix. Description A type confusion issue exists within the Windows Win32K ICOMP component. This allows a locally authorized attacker to gain elevated privileges. The issue involves accessing...

7.8CVSS6.5AI score0.00485EPSS
Exploits0References8
RedhatCVE
RedhatCVEadded 2026/01/09 10:12 a.m.11 views

CVE-2019-11490

An issue was discovered in Npcap 0.992. Sending a malformed .pcap file with the loopback adapter using either pcapsendqueuequeue or pcapsendqueuetransmit results in kernel pool corruption. This could lead to arbitrary code executing inside the Windows kernel and allow escalation of privileges...

7.8CVSS7.6AI score0.00707EPSS
Exploits1References1
OSV
OSVadded 2025/12/09 6:15 p.m.2 views

CVE-2025-62458

Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...

7.8CVSS6AI score0.00638EPSS
Exploits0References1
Microsoft CVE
Microsoft CVEadded 2025/12/09 8:0 a.m.4 views

Win32k Elevation of Privilege Vulnerability

Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...

7.8CVSS7.5AI score0.00638EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/11/29 3:0 p.m.9 views

CVE-2025-11156

Netskope was notified about a potential gap in its agent NS Client on Windows systems. If this gap is successfully exploited, a local, authenticated user with Administrator privileges can improperly load the driver as a generic kernel service. This triggers the flaw, causing a system crash...

5.9CVSS6.6AI score0.0011EPSS
Exploits0References1
NVD
NVDadded 2025/11/28 3:15 p.m.9 views

CVE-2025-11156

Netskope was notified about a potential gap in its agent NS Client on Windows systems. If this gap is successfully exploited, a local, authenticated user with Administrator privileges can improperly load the driver as a generic kernel service. This triggers the flaw, causing a system crash...

5.9CVSS0.0011EPSS
Exploits0References1
Packet Storm
Packet Stormadded 2025/11/28 12:0 a.m.176 views

📄 Microsoft Windows 10.0.17763.5458 Kernel IOCTL Access Control

Microsoft Windows version 10.0.17763.5458 Kernel IOCTL access control proof of concept Metasploit module. ============================================================================================================================================= | Title : Windows 10.0.17763.5458 Kernel IOCTL...

7.8CVSS9.2AI score0.51865EPSS
Exploits13
Packet Storm
Packet Stormadded 2025/11/27 12:0 a.m.203 views

📄 Microsoft Windows 10 21H2 / 22H2 Kernel Race Condition / Privilege Escalation

Proof of concept exploit for a kernel race condition in Microsoft Windows 10 versions 21H2 and 22H2. Combined with a double-free memory corrupt issue, it allows for privilege escalation...

7CVSS5.6AI score0.061EPSS
Exploits6
GithubExploit
GithubExploitadded 2025/11/18 4:12 p.m.201 views

Exploit for Double Free in Microsoft

CVE-2025-62215 Exploit PoC Original code credit: https://gith...

7CVSS5.9AI score0.061EPSS
Exploits6
GithubExploit
GithubExploitadded 2025/11/18 12:59 p.m.177 views

Exploit for Improper Input Validation in Amd Ryzen_Master

CVE-2023-20564 - AMD Ryzen Master Driver Physical Memory Acces...

6.7CVSS7.7AI score0.0029EPSS
Exploits1
Information Security Automation
Information Security Automationadded 2025/11/14 7:49 p.m.10 views

November Microsoft Patch Tuesday

November Microsoft Patch Tuesday. A total of 65 vulnerabilities. I'm not comparing this with the October report because I've decided to cover only MSPT-day vulnerabilities. The thing is, Microsoft has started massively adding Linux-product vulnerabilities to their official website, and these...

9.8CVSS6.9AI score0.061EPSS
Exploits6
RedhatCVE
RedhatCVEadded 2025/11/12 6:1 p.m.4 views

CVE-2025-62215

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Kernel allows an authorized attacker to elevate privileges locally...

7CVSS5.9AI score0.061EPSS
Exploits6References1
The Hacker News
The Hacker Newsadded 2025/11/12 10:21 a.m.13 views

Microsoft Fixes 63 Security Flaws, Including a Windows Kernel Zero-Day Under Active Attack

Microsoft on Tuesday released patches for 63 new security vulnerabilities identified in its software, including one that has come under active exploitation in the wild. Of the 63 flaws, four are rated Critical and 59 are rated Important in severity. Twenty-nine of these vulnerabilities are relate...

9.8CVSS6.8AI score0.061EPSS
Exploits6
CISA KEV Catalog
CISA KEV Catalogadded 2025/11/12 12:0 a.m.30 views

Microsoft Windows Race Condition Vulnerability

Microsoft Windows Kernel contains a race condition vulnerability that allows a local attacker with low-level privileges to escalate privileges. Successful exploitation of this vulnerability could enable the attacker to gain SYSTEM-level access...

7CVSS6.8AI score0.061EPSS
In wildExploits6
Talos Blog
Talos Blogadded 2025/11/11 6:19 p.m.7 views

Microsoft Patch Tuesday for November 2025 — Snort rules and prominent vulnerabilities

Microsoft has released its monthly security update for November 2025, which includes 63 vulnerabilities affecting a range of products, including 5 that Microsoft marked as "critical." Current intelligence shows that one of the important vulnerabilities, CVE-2025-62215, has already been detected i...

9.8CVSS7.4AI score0.061EPSS
Exploits6
NVD
NVDadded 2025/11/11 6:15 p.m.3 views

CVE-2025-62215

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Kernel allows an authorized attacker to elevate privileges locally...

7CVSS0.061EPSS
Exploits6References2
OSV
OSVadded 2025/11/11 6:15 p.m.1 views

CVE-2025-62215

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Kernel allows an authorized attacker to elevate privileges locally...

7CVSS5.9AI score0.061EPSS
Exploits6References2
CVE
CVEadded 2025/11/11 5:59 p.m.487 views

CVE-2025-62215

CVE-2025-62215 is a Windows Kernel race condition that enables local privilege escalation to SYSTEM by exploiting a concurrency window over kernel object handles, causing a double-free. A PoC exploit repository demonstrates a multithreaded trigger and heap spraying to achieve token elevation. Pub...

7CVSS5.8AI score0.061EPSS
In wildExploits6References2Affected Software10
Vulnrichment
Vulnrichmentadded 2025/11/11 5:59 p.m.2 views

CVE-2025-62215 Windows Kernel Elevation of Privilege Vulnerability

...

7CVSS5.7AI score0.061EPSS
Exploits6References1
Cvelist
Cvelistadded 2025/11/11 5:59 p.m.15 views

CVE-2025-62215 Windows Kernel Elevation of Privilege Vulnerability

...

7CVSS0.061EPSS
Exploits6References1
Rows per page
Query Builder