CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2025/07/08 4:57 p.m.•2 views

CVE-2025-48803 Windows Virtualization-Based Security (VBS) Elevation of Privilege Vulnerability

...

6.7CVSS7.2AI score0.00258EPSS

CVE•added 2025/07/08 4:57 p.m.•44 views

CVE-2025-47159

CVE-2025-47159 affects Windows Virtualization-Based Security (VBS) Enclave. The vulnerability is a protection mechanism failure that could allow an authorized local attacker to escalate privileges. Affected component: VBS Enclave in Windows. Outcome: local privilege escalation with HIGH impact if...

7.8CVSS6.5AI score0.00366EPSS

Exploits0References1Affected Software13

Cvelist•added 2025/07/08 4:57 p.m.•6 views

CVE-2025-47159 Windows Virtualization-Based Security (VBS) Elevation of Privilege Vulnerability

...

7.8CVSS0.00366EPSS

Vulnrichment•added 2025/07/08 4:57 p.m.•3 views

CVE-2025-47159 Windows Virtualization-Based Security (VBS) Elevation of Privilege Vulnerability

...

7.8CVSS7.2AI score0.00366EPSS

Microsoft CVE•added 2025/07/08 2:0 p.m.•5 views

Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability

Missing support for integrity check in Windows Virtualization-Based Security VBS Enclave allows an authorized attacker to elevate privileges locally...

6.7CVSS6.6AI score0.00258EPSS

Exploits0

Microsoft CVE•added 2025/07/08 2:0 p.m.•6 views

Windows Virtualization-Based Security (VBS) Elevation of Privilege Vulnerability

Protection mechanism failure in Windows Virtualization-Based Security VBS Enclave allows an authorized attacker to elevate privileges locally...

7.8CVSS6.5AI score0.00366EPSS

Exploits0

CNNVD•added 2025/07/08 12:0 a.m.•2 views

Microsoft Windows Virtualization-Based Security Enclave 安全漏洞

Microsoft Windows Virtualization-Based Security Enclave Microsoft Windows VBS Enclave is a software-based trusted execution environment in the address space of host applications from Microsoft Corporation USA. A security vulnerability exists in Microsoft Windows Virtualization-Based Security...

6.7CVSS6.4AI score0.00258EPSS

Positive Technologies•added 2025/07/08 12:0 a.m.•3 views

PT-2025-28536 · Microsoft · Windows Virtualization-Based Security +1

Name of the Vulnerable Software and Affected Versions: Windows Virtualization-Based Security VBS affected versions not specified Description: The issue concerns a lack of integrity check support in Windows Virtualization-Based Security VBS Enclave, allowing an authorized attacker to locally eleva...

6.8CVSS5.8AI score0.00258EPSS

Exploits0References7

CNNVD•added 2025/07/08 12:0 a.m.•3 views

Microsoft Windows Virtualization-Based Security Enclave 安全漏洞

7.8CVSS6.4AI score0.00366EPSS

Exploits0References2

CNNVD•added 2025/07/08 12:0 a.m.•3 views

Microsoft Windows Virtualization-Based Security Enclave 安全漏洞

6.7CVSS6.4AI score0.00258EPSS

Positive Technologies•added 2025/07/08 12:0 a.m.•4 views

PT-2025-28507 · Microsoft · Windows Virtualization-Based Security +2

Name of the Vulnerable Software and Affected Versions: Windows Virtualization-Based Security VBS Enclave affected versions not specified Description: The issue is related to a protection mechanism failure in Windows Virtualization-Based Security VBS Enclave, allowing an authorized attacker to...

7.8CVSS5.7AI score0.00366EPSS

OSV•added 2025/07/07 5:15 p.m.•3 views

CVE-2025-1351

IBM Storage Virtualize 8.5, 8.6, and 8.7 products could allow a user to escalate their privileges to that of another user logging in at the same time due to a race condition in the login function...

7CVSS5.8AI score0.00086EPSS

RedHat Linux•added 2025/07/01 7:48 p.m.•5 views

microcode_ctl: From CVEorg collector

A flaw was found in the Branch Prediction Unit BPU of Intel's Lion Core CPUs that make it possible for an attacker to bypass Indirect Branch Predictor Barrier IBPB protections. By employing branch predictor training techniques as described in the "Training Solo" publication, an attacker with loca...

RedHat Linux•added 2025/07/01 3:33 p.m.•6 views

microcode_ctl: From CVEorg collector

RedHat Linux•added 2025/07/01 3:24 p.m.•4 views

microcode_ctl: From CVEorg collector

RedHat Linux•added 2025/07/01 2:55 p.m.•7 views

microcode_ctl: From CVEorg collector

OSV•added 2025/07/01 1:15 a.m.•5 views

CVE-2025-36056

IBM System Storage Virtualization Engine TS7700 3957 VED R5.4 8.54.2.17, R6.0 8.60.0.115, 3948 VED R5.4 8.54.2.17, R6.0 8.60.0.115, and 3948 VEF R6.0 8.60.0.115 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI...

5.4CVSS5.5AI score0.00167EPSS

OSV•added 2025/07/01 1:15 a.m.•4 views

CVE-2025-2141

6.1CVSS5.5AI score0.00183EPSS

Vulnrichment•added 2025/07/01 1:1 a.m.•6 views

CVE-2025-2141 IBM System Storage Virtualization Engine TS7700 cross-site scripting

6.1CVSS6.4AI score0.00183EPSS