Lucene search
K

21762 matches found

Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

7CVSS7.7AI score0.00356EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

NT OS Kernel Information Disclosure Vulnerability

Exposure of sensitive information to an unauthorized actor in Windows NT OS Kernel allows an authorized attacker to disclose information locally...

5.5CVSS6.7AI score0.0086EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability

Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally...

7.8CVSS7.7AI score0.00327EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•1 views

Windows Media Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network...

8.8CVSS8.1AI score0.00843EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

Use after free in Windows Message Queuing allows an unauthorized attacker to execute code over a network...

8.1CVSS8AI score0.03644EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•1 views

Windows Installer Elevation of Privilege Vulnerability

Weak authentication in Windows Installer allows an authorized attacker to elevate privileges locally...

7.8CVSS7.4AI score0.00457EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•3 views

DirectX Graphics Kernel Remote Code Execution Vulnerability

Access of resource using incompatible type 'type confusion' in Graphics Kernel allows an authorized attacker to execute code locally...

7.8CVSS7.7AI score0.00448EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•1 views

Remote Desktop Spoofing Vulnerability

Missing authorization in Remote Desktop Server allows an unauthorized attacker to perform spoofing over a network...

9.1CVSS7.2AI score0.00908EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Windows SMB Remote Code Execution Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows SMB allows an unauthorized attacker to execute code over a network...

7.5CVSS7.7AI score0.00601EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Windows Distributed Transaction Coordinator (MSDTC) Information Disclosure Vulnerability

Integer overflow or wraparound in Windows Distributed Transaction Coordinator allows an authorized attacker to disclose information over a network...

6.5CVSS7.1AI score0.01203EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Windows Graphics Component Remote Code Execution Vulnerability

Untrusted pointer dereference in Microsoft Graphics Component allows an unauthorized attacker to execute code over a network...

9.8CVSS7.5AI score0.03536EPSS
Exploits6
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•3 views

Win32k Elevation of Privilege Vulnerability

Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...

7.3CVSS7.8AI score0.00538EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an authorized attacker to execute code over a network...

8CVSS8.2AI score0.00791EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Remote Access Point-to-Point Protocol (PPP) EAP-TLS Elevation of Privilege Vulnerability

Use after free in Remote Access Point-to-Point Protocol PPP EAP-TLS allows an authorized attacker to elevate privileges locally...

7.3CVSS7.8AI score0.00527EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Windows NTFS Information Disclosure Vulnerability

Time-of-check time-of-use toctou race condition in Windows NTFS allows an unauthorized attacker to disclose information locally...

7CVSS6.8AI score0.00354EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Desktop Window Manager Elevation of Privilege Vulnerability

Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges locally...

7.8CVSS5.4AI score0.00401EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Windows Kernel Elevation of Privilege Vulnerability

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...

7.8CVSS7.7AI score0.00405EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•1 views

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network...

8.8CVSS8.2AI score0.00891EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•6 views

Microsoft Exchange Server Tampering Vulnerability

Improper input validation in Microsoft Exchange Server allows an authorized attacker to perform tampering over a network...

6.5CVSS7.1AI score0.01267EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•10 views

Web Deploy Remote Code Execution Vulnerability

Deserialization of untrusted data in Web Deploy allows an authorized attacker to execute code over a network...

8.8CVSS7.6AI score0.22323EPSS
Exploits3
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•9 views

Microsoft SQL Server Elevation of Privilege Vulnerability

Improper access control in SQL Server allows an authorized attacker to elevate privileges over a network...

8.8CVSS7.8AI score0.01516EPSS
Exploits2
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•3 views

Microsoft Excel Remote Code Execution Vulnerability

Use of uninitialized resource in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS7.6AI score0.00485EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Microsoft Excel Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS8.1AI score0.00485EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•8 views

Microsoft Azure File Sync Elevation of Privilege Vulnerability

Improper access control in Azure File Sync allows an authorized attacker to elevate privileges locally...

7.8CVSS7.2AI score0.0027EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•6 views

Microsoft SQL Server Elevation of Privilege Vulnerability

Improper neutralization of special elements used in an sql command 'sql injection' in SQL Server allows an authorized attacker to elevate privileges over a network...

8.8CVSS7.9AI score0.00865EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•5 views

Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Dynamics 365 on-premises allows an unauthorized attacker to perform spoofing over a network...

5.4CVSS7.1AI score0.00474EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•5 views

Windows Hyper-V Denial of Service Vulnerability

Missing synchronization in Windows Hyper-V allows an authorized attacker to deny service over an adjacent network...

6.8CVSS7.2AI score0.00426EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•11 views

Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability

The ui performs the wrong action in Microsoft Edge for Android allows an unauthorized attacker to perform spoofing over a network...

4.3CVSS7AI score0.0046EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•6 views

Azure Virtual Machines Spoofing Vulnerability

Improper access control in Azure Virtual Machines allows an authorized attacker to perform spoofing locally...

7.9CVSS7.2AI score0.00385EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability

User interface ui misrepresentation of critical information in Microsoft Edge for Android allows an unauthorized attacker to perform spoofing over a network...

4.3CVSS6.8AI score0.00433EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•5 views

Windows StateRepository API Server file Elevation of Privilege Vulnerability

Missing authentication for critical function in Windows StateRepository API allows an authorized attacker to elevate privileges locally...

7.8CVSS7.5AI score0.00327EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•13 views

Windows Subsystem for Linux (WSL2) Kernel Elevation of Privilege Vulnerability

Time-of-check time-of-use toctou race condition in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...

7CVSS7.2AI score0.00209EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Microsoft Word Remote Code Execution Vulnerability

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...

8.4CVSS8AI score0.00425EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•5 views

Windows NTLM Elevation of Privilege Vulnerability

Improper authentication in Windows NTLM allows an authorized attacker to elevate privileges over a network...

8.8CVSS7.4AI score0.36074EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Windows Push Notifications Apps Elevation of Privilege Vulnerability

Access of resource using incompatible type 'type confusion' in Windows Push Notifications allows an authorized attacker to elevate privileges locally...

7.8CVSS7.2AI score0.00401EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Microsoft Office Remote Code Execution Vulnerability

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...

8.4CVSS8AI score0.00499EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Microsoft Excel Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS8.1AI score0.00495EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/11 7:0 a.m.•3 views

Libsoup: integer underflow in soup_multipart_new_from_message() leading to denial of service in libsoup

...

7.5CVSS7AI score0.00625EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/09 7:0 a.m.•2 views

Ceph is vulnerable to authentication bypass through RadosGW

...

9.1CVSS7AI score0.00192EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/07 6:31 p.m.•7 views

Chromium: CVE-2025-8583 Inappropriate implementation in Permissions

Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6AI score0.00209EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/07 6:31 p.m.•4 views

Chromium: CVE-2025-8582 Insufficient validation of untrusted input in DOM

Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6AI score0.00223EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/07 6:31 p.m.•4 views

Chromium: CVE-2025-8581 Inappropriate implementation in Extensions

Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6AI score0.00257EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/07 6:31 p.m.•4 views

Chromium: CVE-2025-8580 Inappropriate implementation in Filesystems

Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6AI score0.00225EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/07 6:31 p.m.•2 views

Chromium: CVE-2025-8579 Inappropriate implementation in Gemini Live in Chrome

Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6AI score0.00225EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/07 6:31 p.m.•3 views

Chromium: CVE-2025-8578 Use after free in Cast

Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS6AI score0.00313EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/07 6:31 p.m.•3 views

Chromium: CVE-2025-8577 Inappropriate implementation in Picture In Picture

Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6AI score0.00225EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/07 6:31 p.m.•7 views

Chromium: CVE-2025-8576 Use after free in Extensions

Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS6AI score0.003EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/07 7:0 a.m.•3 views

s390/pkey: Prevent overflow in size calculation for memdup_user()

...

7.8CVSS7AI score0.00147EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/07 7:0 a.m.•4 views

seg6: Fix validation of nexthop addresses

...

7.1CVSS7AI score0.00137EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/07 7:0 a.m.•11 views

crypto: sun8i-ce-cipher - fix error handling in sun8i_ce_cipher_prepare()

...

5.5CVSS7AI score0.00147EPSS
Exploits0
Total number of security vulnerabilities21762