Lucene search
K

22096 matches found

Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•9 views

Windows Local Security Authority (LSA) Denial of Service Vulnerability

Null pointer dereference in Windows Local Security Authority LSA allows an authorized attacker to deny service over a network...

6.5CVSS7.1AI score0.01476EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•8 views

Windows Storage Management Provider Information Disclosure Vulnerability

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...

5.5CVSS6.8AI score0.0054EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•8 views

DHCP Server Service Denial of Service Vulnerability

Protection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny service over a network...

7.5CVSS7.1AI score0.0152EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•237 views

Windows DWM Core Library Information Disclosure Vulnerability

Use of uninitialized resource in Windows DWM Core Library allows an authorized attacker to disclose information locally...

5.5CVSS6.9AI score0.00534EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•7 views

Windows Storage Management Provider Information Disclosure Vulnerability

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...

5.5CVSS6.8AI score0.00529EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•9 views

Windows Virtualization-Based Security (VBS) Information Disclosure Vulnerability

Exposure of sensitive information to an unauthorized actor in Windows Hello allows an authorized attacker to disclose information locally...

4.4CVSS6.7AI score0.00577EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•8 views

Windows KDC Proxy Service (KPSSVC) Remote Code Execution Vulnerability

Use after free in Windows KDC Proxy Service KPSSVC allows an unauthorized attacker to execute code over a network...

8.1CVSS8AI score0.13548EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•7 views

Microsoft Office Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally...

8.4CVSS8.1AI score0.00659EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•10 views

Microsoft Office Remote Code Execution Vulnerability

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...

8.4CVSS8AI score0.00465EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•18 views

Windows Installer Elevation of Privilege Vulnerability

Improper link resolution before file access 'link following' in Windows Installer allows an authorized attacker to elevate privileges locally...

7.8CVSS7.2AI score0.0053EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•231 views

Windows Storage Management Provider Information Disclosure Vulnerability

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...

5.5CVSS6.8AI score0.00529EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•6 views

Windows Storage Management Provider Information Disclosure Vulnerability

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...

5.5CVSS6.8AI score0.00529EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•9 views

Windows Storage Management Provider Information Disclosure Vulnerability

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...

5.5CVSS6.8AI score0.00529EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•39 views

Windows Storage Management Provider Information Disclosure Vulnerability

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...

5.5CVSS6.8AI score0.00602EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•14 views

Remote Desktop Protocol Client Information Disclosure Vulnerability

Out-of-bounds read in Remote Desktop Client allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.8AI score0.01241EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•57 views

.NET and Visual Studio Remote Code Execution Vulnerability

Untrusted search path in .NET and Visual Studio allows an unauthorized attacker to execute code over a network...

7.5CVSS7.6AI score0.0089EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•9 views

Visual Studio Remote Code Execution Vulnerability

Improper neutralization of special elements used in a command 'command injection' in Visual Studio allows an authorized attacker to execute code over a network...

7.1CVSS7.8AI score0.05806EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•19 views

Cert CC: CVE-2025-3052 InsydeH2O Secure Boot Bypass

Untrusted pointer dereference in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...

8.2CVSS7.2AI score0.00347EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•6 views

Microsoft PowerPoint Remote Code Execution Vulnerability

Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally...

7.8CVSS8AI score0.02054EPSS
Exploits4
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•9 views

Microsoft Outlook Remote Code Execution Vulnerability

Improper input validation in Microsoft Office Outlook allows an authorized attacker to execute code locally...

6.7CVSS7.6AI score0.01368EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•11 views

Microsoft Word Remote Code Execution Vulnerability

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS8AI score0.00548EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•9 views

Microsoft Office Remote Code Execution Vulnerability

Access of resource using incompatible type 'type confusion' in Microsoft Office allows an unauthorized attacker to execute code locally...

8.4CVSS7.6AI score0.00575EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•10 views

Windows SMB Client Elevation of Privilege Vulnerability

Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network...

8.8CVSS7.2AI score0.64987EPSS
Exploits6
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•6 views

Windows Storage Management Provider Information Disclosure Vulnerability

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...

5.5CVSS6.8AI score0.00512EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•58 views

Windows Storage Management Provider Information Disclosure Vulnerability

Buffer over-read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...

5.5CVSS6.8AI score0.00477EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•25 views

Windows Security App Spoofing Vulnerability

External control of file name or path in Windows Security App allows an authorized attacker to perform spoofing locally...

5.5CVSS7.2AI score0.00447EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•10 views

Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

Improper privilege management in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges locally...

7.8CVSS7.4AI score0.00826EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•61 views

Windows Shortcut Files Security Feature Bypass Vulnerability

Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network...

5.4CVSS7.2AI score0.00716EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•18 views

Windows Task Scheduler Elevation of Privilege Vulnerability

Improper privilege management in Windows Kernel allows an unauthorized attacker to elevate privileges locally...

8.4CVSS7.3AI score0.00429EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•13 views

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an authorized attacker to execute code over a network...

8.8CVSS8.2AI score0.0114EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•11 views

Windows Storage Management Provider Information Disclosure Vulnerability

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...

5.5CVSS6.8AI score0.0054EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•43 views

Windows Storage Management Provider Information Disclosure Vulnerability

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...

5.5CVSS6.8AI score0.00529EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•13 views

Windows Recovery Driver Elevation of Privilege Vulnerability

Improper link resolution before file access 'link following' in Windows Recovery Driver allows an authorized attacker to elevate privileges locally...

7.3CVSS7.2AI score0.00595EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•6 views

Windows Media Elevation of Privilege Vulnerability

Out-of-bounds read in Windows Media allows an authorized attacker to elevate privileges locally...

7.8CVSS7.1AI score0.00455EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•11 views

Windows Installer Elevation of Privilege Vulnerability

Improper access control in Windows Installer allows an authorized attacker to elevate privileges locally...

7.8CVSS7.2AI score0.01165EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•9 views

Windows Common Log File System Driver Elevation of Privilege Vulnerability

Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally...

7.8CVSS7.7AI score0.00643EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/10 7:0 a.m.•8 views

Win32k Elevation of Privilege Vulnerability

Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...

7.8CVSS7.7AI score0.00455EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/05 7:0 a.m.•17 views

Power Automate Elevation of Privilege Vulnerability

Exposure of sensitive information to an unauthorized actor in Power Automate allows an unauthorized attacker to elevate privileges over a network...

9.8CVSS6.8AI score0.01022EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/03 8:50 p.m.•19 views

Chromium: CVE-2025-5068 Use after free in Blink

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS6.9AI score0.02614EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/06/03 8:50 p.m.•27 views

Chromium: CVE-2025-5419 Out of bounds read and write in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that an exploit for CVE-2025-5419 exists in the wild...

8.8CVSS6.9AI score0.06463EPSS
Exploits3
Microsoft CVE
Microsoft CVE
•added 2025/05/30 7:0 a.m.•3 views

setuptools has a path traversal vulnerability in PackageIndex.download that leads to Arbitrary File Write

...

8.8CVSS7.6AI score0.01479EPSS
Exploits4
Microsoft CVE
Microsoft CVE
•added 2025/05/29 7:6 p.m.•14 views

Chromium: CVE-2025-5066 Inappropriate implementation in Messages

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS6.9AI score0.00392EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/29 6:55 p.m.•289 views

Chromium: CVE-2025-5067 Inappropriate implementation in Tab Strip

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

5.4CVSS6.9AI score0.00349EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/29 6:55 p.m.•294 views

Chromium: CVE-2025-5283 Use after free in libvpx

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

5.4CVSS6.9AI score0.00489EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/29 6:55 p.m.•295 views

Chromium: CVE-2025-5281 Inappropriate implementation in BFCache

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

5.4CVSS6.9AI score0.00179EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/29 6:55 p.m.•19 views

Chromium: CVE-2025-5065 Inappropriate implementation in FileSystemAccess API

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS6.9AI score0.00392EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/29 6:55 p.m.•303 views

Chromium: CVE-2025-5064 Inappropriate implementation in Background Fetch API

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

5.4CVSS6.9AI score0.00307EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/29 6:55 p.m.•15 views

Chromium: CVE-2025-5280 Out of bounds write in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS6.9AI score0.02249EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/29 6:55 p.m.•14 views

Chromium: CVE-2025-5063 Use after free in Compositing

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS6.9AI score0.02967EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/27 7:0 a.m.•1 views

Libsoup: heap buffer overflows in sniff_feed_or_html() and skip_insignificant_space()

...

6.5CVSS7.2AI score0.0057EPSS
Exploits0
Total number of security vulnerabilities22096