Lucene search
K

22096 matches found

Microsoft CVE
Microsoft CVE
•added 2025/06/23 7:0 a.m.•4 views

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

...

4.9CVSS7.7AI score0.00716EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/23 7:0 a.m.•2 views

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB)

...

6.5CVSS7.7AI score0.00628EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/23 7:0 a.m.•6 views

Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.1 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).

...

2.7CVSS7.7AI score0.00457EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/23 7:0 a.m.•3 views

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

...

4.9CVSS7.7AI score0.00716EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/23 7:0 a.m.•2 views

Vulnerability in the MySQL Server product of Oracle MySQL

...

4.9CVSS7.7AI score0.00716EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/23 7:0 a.m.•10 views

Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.1 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).

...

4.9CVSS7.7AI score0.00774EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/23 7:0 a.m.•2 views

Vulnerability in the MySQL Server product of Oracle MySQL

...

4.9CVSS7.7AI score0.00774EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/23 7:0 a.m.•3 views

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

...

4.9CVSS7.7AI score0.00716EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/23 7:0 a.m.•2 views

Vulnerability in the MySQL Server product of Oracle MySQL

...

4.9CVSS7.7AI score0.00716EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/23 7:0 a.m.•6 views

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

...

4.9CVSS7.7AI score0.00716EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/23 7:0 a.m.•4 views

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).

...

6.5CVSS7.7AI score0.00651EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/23 7:0 a.m.•5 views

Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.1 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).

...

4.4CVSS7.7AI score0.00661EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/23 7:0 a.m.•7 views

Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.1 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).

...

4.9CVSS7.7AI score0.00716EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/23 7:0 a.m.•1 views

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).

...

5.5CVSS7.7AI score0.00588EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/19 3:24 p.m.•14 views

Chromium: CVE-2025-6192 Use after free in Profiler

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.4AI score0.00448EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/19 3:24 p.m.•8 views

Chromium: CVE-2025-6191 Integer overflow in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.4AI score0.08794EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/19 7:0 a.m.•11 views

Dynamics 365 FastTrack Implementation Assets Information Disclosure Vulnerability

Exposure of private personal information to an unauthorized actor in Dynamics 365 FastTrack Implementation Assets allows an unauthorized attacker to disclose information over a network...

7.5CVSS7.3AI score0.00685EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/13 7:0 a.m.•14 views

Chromium: CVE-2025-5959 Type Confusion in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS6.9AI score0.10666EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/13 7:0 a.m.•13 views

Chromium: CVE-2025-5958 Use after free in Media

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS6.9AI score0.00401EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/11 2:0 p.m.•39 views

M365 Copilot Information Disclosure Vulnerability

Ai command injection in M365 Copilot allows an unauthorized attacker to disclose information over a network...

9.3CVSS7.4AI score0.05776EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•6 views

Nuance Digital Engagement Platform Spoofing Vulnerability

Improper neutralization of input during web page generation 'cross-site scripting' in Nuance Digital Engagement Platform allows an unauthorized attacker to perform spoofing over a network...

8.2CVSS8.2AI score0.00513EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•17 views

Microsoft Excel Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS8.1AI score0.00459EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•11 views

Microsoft SharePoint Server Remote Code Execution Vulnerability

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network...

8.8CVSS7.5AI score0.12606EPSS
Exploits2
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•9 views

Microsoft Excel Remote Code Execution Vulnerability

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS8AI score0.01768EPSS
Exploits2
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•14 views

Microsoft Office Remote Code Execution Vulnerability

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...

8.4CVSS8AI score0.00563EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•9 views

Windows Netlogon Elevation of Privilege Vulnerability

Use of uninitialized resource in Windows Netlogon allows an unauthorized attacker to elevate privileges over a network...

8.1CVSS7.2AI score0.06116EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•10 views

Windows Local Security Authority (LSA) Denial of Service Vulnerability

Improper access control in Microsoft Local Security Authority Server lsasrv allows an unauthorized attacker to deny service over a network...

7.5CVSS7.1AI score0.01406EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•19 views

Internet Shortcut Files Remote Code Execution Vulnerability

External control of file name or path in Internet Shortcut Files allows an unauthorized attacker to execute code over a network...

8.8CVSS8.9AI score0.81558EPSS
Exploits10
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•10 views

DHCP Server Service Denial of Service Vulnerability

Protection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny service over a network...

7.5CVSS7.1AI score0.01488EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•18 views

Microsoft Word Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally...

8.4CVSS8.7AI score0.00511EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•22 views

Windows SDK Elevation of Privilege Vulnerability

Improper access control in Windows SDK allows an authorized attacker to elevate privileges locally...

7.8CVSS7.2AI score0.01423EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•8 views

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network...

8.8CVSS8.2AI score0.00951EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•5 views

Windows Storage Management Provider Information Disclosure Vulnerability

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...

5.5CVSS6.8AI score0.00529EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•7 views

Windows Storage Management Provider Information Disclosure Vulnerability

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...

5.5CVSS6.8AI score0.00529EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•8 views

Windows Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability

Uncontrolled resource consumption in Windows Local Security Authority Subsystem Service LSASS allows an unauthorized attacker to deny service over a network...

7.5CVSS5.7AI score0.01549EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•9 views

Windows Storage Port Driver Information Disclosure Vulnerability

Improper access control in Windows Storage Port Driver allows an authorized attacker to disclose information locally...

5.5CVSS6.9AI score0.00998EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•6 views

Windows Storage Management Provider Information Disclosure Vulnerability

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...

5.5CVSS6.8AI score0.00477EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•7 views

Windows SMB Client Elevation of Privilege Vulnerability

Integer overflow or wraparound in Windows SMB allows an authorized attacker to elevate privileges locally...

7.8CVSS7.5AI score0.00455EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•16 views

Windows Remote Desktop Services Remote Code Execution Vulnerability

Use after free in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network...

8.1CVSS8.1AI score0.0095EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•13 views

Windows Schannel Remote Code Execution Vulnerability

Missing release of memory after effective lifetime in Windows Cryptographic Services allows an unauthorized attacker to execute code over a network...

8.1CVSS7.6AI score0.01112EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•10 views

Microsoft Word Remote Code Execution Vulnerability

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...

8.4CVSS8AI score0.01213EPSS
Exploits2
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•7 views

Windows App Control for Business Security Feature Bypass Vulnerability

Improper verification of cryptographic signature in App Control for Business WDAC allows an unauthorized attacker to bypass a security feature locally...

5.1CVSS7.3AI score0.00286EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•35 views

Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

Improper input validation in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...

7.8CVSS7.2AI score0.0037EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•22 views

Microsoft Outlook Remote Code Execution Vulnerability

'.../...//' in Microsoft Office Outlook allows an authorized attacker to execute code locally...

7.8CVSS7.6AI score0.00648EPSS
Exploits2
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•12 views

Microsoft Office Remote Code Execution Vulnerability

Improper input validation in Microsoft Office allows an unauthorized attacker to execute code locally...

7.8CVSS7.6AI score0.00543EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•7 views

Microsoft SharePoint Server Remote Code Execution Vulnerability

Improper neutralization of special elements used in an sql command 'sql injection' in Microsoft Office SharePoint allows an authorized attacker to execute code over a network...

8.8CVSS7.7AI score0.0151EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•12 views

Microsoft Word Remote Code Execution Vulnerability

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS8AI score0.00555EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•5 views

Microsoft Word Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS8.1AI score0.0056EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•11 views

Microsoft SharePoint Server Remote Code Execution Vulnerability

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network...

8.8CVSS7.5AI score0.11509EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•5 views

Windows Standards-Based Storage Management Service Denial of Service Vulnerability

Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network...

7.5CVSS7.1AI score0.01488EPSS
Exploits0
Total number of security vulnerabilities22096