Lucene search
+L

186 matches found

mscve
mscve
added 2026/05/12 2:0 p.m.11 views

AMD: CVE-2025-54518 CPU OP Cache Corruption

This vulnerability was found and addressed by AMD. We are documenting it in the Security Update Guide to encourage customers to install the May 2026 version of Windows as soon as possible. The vulnerability assigned to this CVE is in certain processor models offered by AMD. The mitigation for thi...

7.3CVSS5.8AI score0.00258EPSS
Exploits0
mscve
mscve
added 2026/04/14 2:0 p.m.8 views

AMD: CVE-2023-20585 IOMMU Write Buffer Vulnerability

The vulnerability assigned to this CVE could lead to corruption of guest encrypted memory. The mitigation for this vulnerability requires a Windows update. This CVE is being documented in the Security Update Guide to announce that the latest builds of Windows enable the mitigation and provide...

5.6CVSS6.3AI score0.00098EPSS
Exploits0
rapid7blog
rapid7blog
added 2025/09/09 8:45 p.m.8 views

Patch Tuesday - September 2025

Microsoft is addressing 176 vulnerabilities today, which seems like a lot, and it is. Curiously, Microsoft’s own Security Update Guide SUG for September 2025 Patch Tuesday only lists 86 vulns, and that’s because the SUG doesn’t include a large number of open source software OSS fixes published...

10CVSS9.6AI score0.32908EPSS
Exploits5
mscve
mscve
added 2025/07/08 2:0 p.m.11 views

AMD: CVE-2024-36357 Transient Scheduler Attack in L1 Data Queue

The vulnerability assigned to this CVE is in certain processor models offered by AMD. The mitigation for this vulnerability requires a Windows update. This CVE is being documented in the Security Update Guide to announce that the latest builds of Windows enable the mitigation and provide protecti...

5.6CVSS7.4AI score0.00298EPSS
Exploits0
mscve
mscve
added 2025/07/08 7:0 a.m.18 views

AMD: CVE-2024-36350 Transient Scheduler Attack in Store Queue

The vulnerability assigned to this CVE is in certain processor models offered by AMD. The mitigation for this vulnerability requires a Windows update. This CVE is being documented in the Security Update Guide to announce that the latest builds of Windows enable the mitigation and provide protecti...

5.6CVSS6.3AI score0.00425EPSS
Exploits0
mscve
mscve
added 2025/07/08 7:0 a.m.10 views

AMD: CVE-2025-36357 Transient Scheduler Attack in L1 Data Queue

The vulnerability assigned to this CVE is in certain processor models offered by AMD. The mitigation for this vulnerability requires a Windows update. This CVE is being documented in the Security Update Guide to announce that the latest builds of Windows enable the mitigation and provide protecti...

6.8AI score0.0077EPSS
Exploits0
mskb
mskb
added 2025/03/11 7:0 a.m.39 views

February 11, 2025—KB5052040 (OS Build 10240.20915) - EXPIRED

None None...

8.8CVSS6.8AI score0.23168EPSS
Exploits2
cisa
cisa
added 2025/01/14 12:0 p.m.7 views

Microsoft Releases January 2025 Security Updates

Microsoft released security updates to address vulnerabilities in multiple Microsoft products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following and apply necessary updates:...

7.6AI score
Exploits0References1
mskb
mskb
added 2024/11/12 8:0 a.m.19 views

Description of the security update for SharePoint Enterprise Server 2016: November 12, 2024 (KB5002654)

None None...

6.1AI score
Exploits0
mskb
mskb
added 2024/11/12 8:0 a.m.57 views

Description of the security update for Office Online Server: November 12, 2024 (KB5002648)

None None...

7.8CVSS7AI score0.00921EPSS
Exploits0
nessus
nessus
added 2024/10/11 12:0 a.m.26 views

Security Update for Microsoft .NET Core SDK (CVE-2024-38229) (October 2024)

The version of .NET Core SDK installed on the remote host is 8.x prior to 8.0.10. It is, therefore, affected by remote code execution vulnerability as referenced in the October 2024 advisory: - .NET and Visual Studio Remote Code Execution Vulnerability CVE-2024-38229 Note that Nessus has not test...

8.1CVSS7.4AI score0.02078EPSS
Exploits0References4
mskb
mskb
added 2024/10/08 7:0 a.m.42 views

Description of the security update for SharePoint Enterprise Server 2016: October 8, 2024 (KB5002645)

None None...

7.8CVSS7AI score0.00647EPSS
Exploits0
packetstorm
packetstorm
added 2024/08/31 12:0 a.m.258 views

Windows IIS HTTP Protocol Stack Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Windows IIS HTTP Protocol Stack DOS', 'Description' = %q This module exploits CVE-2021-31166, a UAF bug in http.sys when parsing specially crafte...

9.8CVSS7.4AI score0.99657EPSS
Exploits24
mskb
mskb
added 2024/08/13 7:0 a.m.813 views

July 9, 2024—KB5040434 (OS Build 14393.7159) - EXPIRED

None None...

9.8CVSS6.8AI score0.51097EPSS
Exploits2
mskb
mskb
added 2024/08/13 7:0 a.m.104 views

June 11, 2024—KB5039236 (OS Build 25398.950)

None None...

9.8CVSS6.8AI score0.81729EPSS
Exploits20
nvd
nvd
added 2024/08/08 2:15 a.m.62 views

CVE-2024-21302

Summary: As of July 8, 2025 Microsoft has completed mitigations to address this vulnerability. See KB5042562: Guidance for blocking rollback of virtualization-based security related updates and the Recommended Actions section of this CVE for guidance on how to protect your systems from this...

6.7CVSS0.01559EPSS
Exploits0References1
openvas
openvas
added 2024/06/17 12:0 a.m.23 views

Microsoft Edge (Chromium-Based) Multiple Spoofing Vulnerabilities - Jun24

Microsoft Edge Chromium-Based is prone to multiple spoofing vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5.4CVSS6.9AI score0.00493EPSS
Exploits0References2
cisa
cisa
added 2024/06/11 12:0 p.m.6 views

Microsoft Releases June 2024 Security Updates

Microsoft has released security updates to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. Users and administrators are encouraged to review the following advisory and apply the necessary updates...

7.6AI score
Exploits0References1
mskb
mskb
added 2024/05/14 7:0 a.m.70 views

May 14, 2024—KB5037788 (OS Build 10240.20651) - EXPIRED

None None...

8.8CVSS6.8AI score0.11471EPSS
Exploits4
mskb
mskb
added 2024/05/14 7:0 a.m.391 views

May 14, 2024—KB5037763 (OS Build 14393.6981) - EXPIRED

None None...

8.8CVSS6.8AI score0.11471EPSS
Exploits4
Rows per page
Query Builder