Lucene search
K

21767 matches found

Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•4 views

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network...

6.5CVSS7.5AI score0.00852EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•6 views

Universal Print Management Service Elevation of Privilege Vulnerability

Use after free in Universal Print Management Service allows an authorized attacker to elevate privileges locally...

8.8CVSS7.1AI score0.00365EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•7 views

Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability

Use after free in Windows SSDP Service allows an authorized attacker to elevate privileges locally...

7.8CVSS7.1AI score0.0038EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•4 views

Microsoft Excel Information Disclosure Vulnerability

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally...

5.5CVSS6.1AI score0.00508EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•5 views

Windows Miracast Wireless Display Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over an adjacent network...

8CVSS7.5AI score0.00451EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•5 views

Windows Input Method Editor (IME) Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Input Method Editor IME allows an authorized attacker to elevate privileges over a network...

8CVSS6.6AI score0.00518EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•7 views

Remote Desktop Spoofing Vulnerability

Insufficient UI warning of dangerous operations in Remote Desktop Client allows an unauthorized attacker to perform spoofing over a network...

8.1CVSS6.6AI score0.00828EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•4 views

Microsoft Office Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally...

8.4CVSS7.4AI score0.00461EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•2 views

Microsoft Office Remote Code Execution Vulnerability

Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally...

8.4CVSS6.9AI score0.00552EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•5 views

Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability

Double free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally...

7.8CVSS6.7AI score0.00485EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•2 views

Windows Event Tracing Elevation of Privilege Vulnerability

Use after free in Windows Event Tracing allows an authorized attacker to elevate privileges locally...

7.8CVSS7.1AI score0.00352EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•4 views

Windows Transport Driver Interface (TDI) Translation Driver Elevation of Privilege Vulnerability

Buffer over-read in Windows TDX.sys allows an authorized attacker to elevate privileges locally...

7.8CVSS6.6AI score0.00366EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•4 views

Windows Universal Plug and Play (UPnP) Device Host Elevation of Privilege Vulnerability

Use after free in Windows Universal Plug and Play UPnP Device Host allows an authorized attacker to elevate privileges over an adjacent network...

7.1CVSS7.1AI score0.00435EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•11 views

Windows Hyper-V Discrete Device Assignment (DDA) Remote Code Execution Vulnerability

Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally...

8.6CVSS7AI score0.00584EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•23 views

Remote Desktop Client Remote Code Execution Vulnerability

Relative path traversal in Remote Desktop Client allows an unauthorized attacker to execute code over a network...

8.8CVSS7AI score0.00935EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•7 views

Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability

Access of resource using incompatible type 'type confusion' in Windows SSDP Service allows an authorized attacker to elevate privileges locally...

7.8CVSS6.6AI score0.0038EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•5 views

Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability

Missing support for integrity check in Windows Virtualization-Based Security VBS Enclave allows an authorized attacker to elevate privileges locally...

6.7CVSS6.6AI score0.00258EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•7 views

Windows Secure Kernel Mode Information Disclosure Vulnerability

Processor optimization removal or modification of security-critical code in Windows Kernel allows an authorized attacker to disclose information locally...

5.5CVSS6.4AI score0.00426EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•5 views

Windows Search Service Elevation of Privilege Vulnerability

Use after free in Microsoft Windows Search Component allows an authorized attacker to elevate privileges locally...

7CVSS7AI score0.00316EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•8 views

Microsoft Office Remote Code Execution Vulnerability

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...

8.4CVSS7.4AI score0.00595EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•6 views

Microsoft Virtual Hard Disk Remote Code Execution Vulnerability

Integer overflow or wraparound in Virtual Hard Disk VHDX allows an unauthorized attacker to execute code locally...

7.8CVSS7.3AI score0.01916EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•4 views

Windows Shell Elevation of Privilege Vulnerability

Numeric truncation error in Windows Shell allows an authorized attacker to elevate privileges locally...

7.8CVSS6.6AI score0.00366EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•2 views

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network...

8.8CVSS7.5AI score0.00748EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•6 views

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network...

8.8CVSS7.5AI score0.00748EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•4 views

Windows Server Setup and Boot Event Collection Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Kernel allows an authorized attacker to execute code over a network...

7.2CVSS7.4AI score0.01154EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•4 views

Workspace Broker Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Workspace Broker allows an authorized attacker to elevate privileges locally...

7.8CVSS6.7AI score0.00275EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•3 views

Windows Cryptographic Services Information Disclosure Vulnerability

Cryptographic issues in Windows Cryptographic Services allows an unauthorized attacker to disclose information over a network...

5.9CVSS6.2AI score0.00559EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•5 views

Windows Universal Plug and Play (UPnP) Device Host Elevation of Privilege Vulnerability

Sensitive data storage in improperly locked memory in Windows Universal Plug and Play UPnP Device Host allows an authorized attacker to elevate privileges over an adjacent network...

7.1CVSS6.6AI score0.00325EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•4 views

Windows AppX Deployment Service Elevation of Privilege Vulnerability

Improper link resolution before file access 'link following' in Windows AppX Deployment Service allows an authorized attacker to elevate privileges locally...

7.8CVSS6.6AI score0.00399EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•2 views

Remote Desktop Licensing Service Security Feature Bypass Vulnerability

Missing authentication for critical function in Windows Remote Desktop Licensing Service allows an unauthorized attacker to bypass a security feature over a network...

7.5CVSS7AI score0.01011EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•7 views

Microsoft Brokering File System Elevation of Privilege Vulnerability

Double free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally...

7.8CVSS6.7AI score0.00365EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•4 views

Windows Storage Port Driver Information Disclosure Vulnerability

Buffer over-read in Storage Port Driver allows an authorized attacker to disclose information locally...

5.5CVSS6.3AI score0.00426EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•7 views

Windows Performance Recorder (WPR) Denial of Service Vulnerability

Improper link resolution before file access 'link following' in Windows Performance Recorder allows an authorized attacker to deny service locally...

7.3CVSS6.6AI score0.0047EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•2 views

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Out-of-bounds read in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.2AI score0.0099EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•4 views

Windows Media Elevation of Privilege Vulnerability

Use after free in Windows Media allows an authorized attacker to elevate privileges locally...

7.3CVSS7.1AI score0.00462EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•5 views

NTFS Elevation of Privilege Vulnerability

Null pointer dereference in Windows NTFS allows an authorized attacker to elevate privileges locally...

7CVSS6.6AI score0.00227EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•2 views

Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

Use after free in Kernel Streaming WOW Thunk Service Driver allows an authorized attacker to elevate privileges locally...

7.8CVSS7.1AI score0.00352EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•2 views

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network...

8.8CVSS7.5AI score0.00748EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•4 views

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network...

8.8CVSS7.5AI score0.00748EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•4 views

Windows User-Mode Driver Framework Host Information Disclosure Vulnerability

Exposure of sensitive information to an unauthorized actor in Windows User-Mode Driver Framework Host allows an authorized attacker to disclose information locally...

5.5CVSS6.1AI score0.00528EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•3 views

Windows BitLocker Security Feature Bypass Vulnerability

Time-of-check time-of-use toctou race condition in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack...

6.8CVSS5.8AI score0.00412EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•7 views

HID Class Driver Elevation of Privilege Vulnerability

Integer overflow or wraparound in HID class driver allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00352EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•6 views

Windows Secure Kernel Mode Information Disclosure Vulnerability

Processor optimization removal or modification of security-critical code in Windows Secure Kernel Mode allows an authorized attacker to disclose information locally...

5.5CVSS6.4AI score0.00446EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•3 views

Windows Kernel Information Disclosure Vulnerability

Exposure of sensitive information to an unauthorized actor in Windows Kernel allows an authorized attacker to disclose information locally...

5.5CVSS6.1AI score0.00485EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•4 views

Microsoft MPEG-2 Video Extension Remote Code Execution Vulnerability

Use after free in Microsoft MPEG-2 Video Extension allows an authorized attacker to execute code locally...

7.8CVSS7.4AI score0.00352EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•7 views

Windows Virtualization-Based Security (VBS) Elevation of Privilege Vulnerability

Missing support for integrity check in Windows Virtualization-Based Security VBS Enclave allows an authorized attacker to elevate privileges locally...

6.7CVSS6.6AI score0.00258EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•4 views

Microsoft MPEG-2 Video Extension Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft MPEG-2 Video Extension allows an authorized attacker to execute code locally...

7.8CVSS7.4AI score0.00352EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•7 views

Windows SMB Server Spoofing Vulnerability

Improper certificate validation in Windows SMB allows an authorized attacker to perform spoofing over a network...

6.5CVSS6.5AI score0.00743EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/08 2:0 p.m.•6 views

Windows BitLocker Security Feature Bypass Vulnerability

Acceptance of extraneous untrusted data with trusted data in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack...

6.8CVSS7.9AI score0.10561EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/07/08 7:0 a.m.•10 views

AMD: CVE-2025-36357 Transient Scheduler Attack in L1 Data Queue

The vulnerability assigned to this CVE is in certain processor models offered by AMD. The mitigation for this vulnerability requires a Windows update. This CVE is being documented in the Security Update Guide to announce that the latest builds of Windows enable the mitigation and provide protecti...

6.8AI score0.00686EPSS
Exploits0
Total number of security vulnerabilities21767