Lucene search
K

21762 matches found

Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Azure Stack Hub Information Disclosure Vulnerability

Improper authentication in Azure Stack allows an unauthorized attacker to disclose information over a network...

7.5CVSS7AI score0.01223EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•5 views

Windows StateRepository API Server file Elevation of Privilege Vulnerability

Missing authentication for critical function in Windows StateRepository API allows an authorized attacker to elevate privileges locally...

7.8CVSS7.5AI score0.00327EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Microsoft Word Remote Code Execution Vulnerability

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...

8.4CVSS8AI score0.00425EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Windows Push Notifications Apps Elevation of Privilege Vulnerability

Access of resource using incompatible type 'type confusion' in Windows Push Notifications allows an authorized attacker to elevate privileges locally...

7.8CVSS7.2AI score0.00401EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Windows Security App Spoofing Vulnerability

External control of file name or path in Windows Security App allows an authorized attacker to perform spoofing locally...

5.5CVSS7.2AI score0.00364EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•10 views

GDI+ Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network...

9.8CVSS8.1AI score0.06706EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Microsoft Office Remote Code Execution Vulnerability

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...

8.4CVSS8AI score0.00499EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Windows Push Notifications Apps Elevation of Privilege Vulnerability

Access of resource using incompatible type 'type confusion' in Windows Push Notifications allows an authorized attacker to elevate privileges locally...

7.8CVSS7.2AI score0.0041EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Windows Hyper-V Elevation of Privilege Vulnerability

Numeric truncation error in Windows Hyper-V allows an authorized attacker to elevate privileges locally...

7.8CVSS7.2AI score0.00422EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•1 views

Windows Remote Desktop Services Denial of Service Vulnerability

Uncontrolled resource consumption in Windows Remote Desktop Services allows an unauthorized attacker to deny service over a network...

7.5CVSS7.2AI score0.17335EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•3 views

Windows Connected Devices Platform Service Elevation of Privilege Vulnerability

Use after free in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally...

7CVSS7.7AI score0.00327EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•1 views

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Use of uninitialized resource in Windows Routing and Remote Access Service RRAS allows an authorized attacker to disclose information over a network...

5.7CVSS7AI score0.01135EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•5 views

Windows Storage Port Driver Information Disclosure Vulnerability

Exposure of sensitive information to an unauthorized actor in Storage Port Driver allows an authorized attacker to disclose information locally...

5.5CVSS6.7AI score0.00617EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Windows Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability

Null pointer dereference in Windows Local Security Authority Subsystem Service LSASS allows an authorized attacker to deny service over a network...

6.5CVSS5.4AI score0.01303EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•5 views

Windows Hyper-V Elevation of Privilege Vulnerability

Heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to elevate privileges locally...

7.8CVSS7.8AI score0.00422EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

7.8CVSS7.2AI score0.00401EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Desktop Windows Manager Remote Code Execution Vulnerability

Use after free in Desktop Windows Manager allows an authorized attacker to execute code locally...

7.8CVSS8.1AI score0.0041EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

Access of resource using incompatible type 'type confusion' in Windows Message Queuing allows an authorized attacker to execute code over a network...

8.8CVSS7.6AI score0.0563EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Windows Kernel Transaction Manager Elevation of Privilege Vulnerability

Use after free in Kernel Transaction Manager allows an authorized attacker to elevate privileges locally...

7CVSS7.7AI score0.0033EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•1 views

Windows Media Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network...

8.8CVSS8.1AI score0.00843EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

Use after free in Windows Message Queuing allows an unauthorized attacker to execute code over a network...

8.1CVSS8AI score0.03644EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•1 views

Windows Installer Elevation of Privilege Vulnerability

Weak authentication in Windows Installer allows an authorized attacker to elevate privileges locally...

7.8CVSS7.4AI score0.00457EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

Improper handling of insufficient permissions or privileges in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally...

7.8CVSS7.2AI score0.00366EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Windows Distributed Transaction Coordinator (MSDTC) Information Disclosure Vulnerability

Integer overflow or wraparound in Windows Distributed Transaction Coordinator allows an authorized attacker to disclose information over a network...

6.5CVSS7.1AI score0.01203EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•3 views

Win32k Elevation of Privilege Vulnerability

Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...

7.3CVSS7.8AI score0.00538EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Microsoft Exchange Server Spoofing Vulnerability

Improper handling of additional special element in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...

5.3CVSS7.1AI score0.00787EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•14 views

Microsoft SharePoint Elevation of Privilege Vulnerability

Server-side request forgery ssrf in Microsoft Office SharePoint allows an authorized attacker to elevate privileges over a network...

7.1CVSS7.2AI score0.11126EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•6 views

Microsoft SQL Server Elevation of Privilege Vulnerability

Improper neutralization of special elements used in an sql command 'sql injection' in SQL Server allows an authorized attacker to elevate privileges over a network...

8.8CVSS7.9AI score0.00865EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•5 views

Microsoft SharePoint Remote Code Execution Vulnerability

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network...

8.8CVSS7.5AI score0.17154EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•1 views

Windows Kerberos Elevation of Privilege Vulnerability

Relative path traversal in Windows Kerberos allows an authorized attacker to elevate privileges over a network...

7.2CVSS7.2AI score0.02593EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Azure Stack Hub Information Disclosure Vulnerability

Exposure of private personal information to an unauthorized actor in Azure Stack allows an authorized attacker to disclose information locally...

5.5CVSS6.8AI score0.00457EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•3 views

Microsoft Excel Remote Code Execution Vulnerability

Access of resource using incompatible type 'type confusion' in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS7.6AI score0.00527EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•1 views

Microsoft Word Information Disclosure Vulnerability

Buffer over-read in Microsoft Office Word allows an unauthorized attacker to disclose information locally...

6.8CVSS6.8AI score0.0047EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•3 views

Microsoft Excel Remote Code Execution Vulnerability

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS8AI score0.00527EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Microsoft Office Visio Remote Code Execution Vulnerability

Use after free in Microsoft Office Visio allows an unauthorized attacker to execute code locally...

7.8CVSS8AI score0.00414EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability

Exposure of sensitive information to an unauthorized actor in Microsoft Dynamics 365 on-premises allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.6AI score0.01102EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Windows Push Notifications Apps Elevation of Privilege Vulnerability

Access of resource using incompatible type 'type confusion' in Windows Push Notifications allows an authorized attacker to elevate privileges locally...

7.8CVSS7.2AI score0.0041EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Use of uninitialized resource in Windows Routing and Remote Access Service RRAS allows an authorized attacker to disclose information over a network...

5.7CVSS7AI score0.01045EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•3 views

Windows Kernel Elevation of Privilege Vulnerability

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...

7.8CVSS7.7AI score0.00405EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•3 views

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

Access of resource using incompatible type 'type confusion' in Windows Message Queuing allows an authorized attacker to execute code over a network...

8.8CVSS7.6AI score0.0563EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

Access of resource using incompatible type 'type confusion' in Windows Message Queuing allows an authorized attacker to execute code over a network...

8.8CVSS7.6AI score0.01008EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•3 views

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

7.8CVSS7.2AI score0.00401EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•3 views

DirectX Graphics Kernel Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows DirectX allows an authorized attacker to elevate privileges locally...

7CVSS7.3AI score0.00246EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•5 views

Win32k Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...

7.8CVSS6.8AI score0.00426EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Windows Hyper-V Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Hyper-V allows an authorized attacker to elevate privileges locally...

7CVSS7.3AI score0.00354EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an authorized attacker to execute code over a network...

8CVSS8.2AI score0.00791EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Windows NTFS Information Disclosure Vulnerability

Time-of-check time-of-use toctou race condition in Windows NTFS allows an unauthorized attacker to disclose information locally...

7CVSS6.8AI score0.00354EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Remote Access Point-to-Point Protocol (PPP) EAP-TLS Elevation of Privilege Vulnerability

Use after free in Remote Access Point-to-Point Protocol PPP EAP-TLS allows an authorized attacker to elevate privileges locally...

7.3CVSS7.8AI score0.00527EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•6 views

Microsoft Windows File Explorer Spoofing Vulnerability

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network...

6.5CVSS6.7AI score0.25671EPSS
Exploits4
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Windows Graphics Component Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally...

6.7CVSS7.3AI score0.00429EPSS
Exploits0
Total number of security vulnerabilities21762