Lucene search
K

22103 matches found

Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•19 views

Microsoft DWM Core Library Elevation of Privilege Vulnerability

Use after free in Windows DWM allows an authorized attacker to elevate privileges locally...

7.8CVSS7.4AI score0.01763EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•111 views

Document Intelligence Studio On-Prem Elevation of Privilege Vulnerability

Improper limitation of a pathname to a restricted directory 'path traversal' in Azure allows an unauthorized attacker to elevate privileges over a network...

9.8CVSS6.9AI score0.01087EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•19 views

Microsoft Office Remote Code Execution Vulnerability

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...

8.4CVSS7.8AI score0.00561EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•14 views

Microsoft SharePoint Server Remote Code Execution Vulnerability

Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker to execute code locally...

7.4CVSS7.3AI score0.0113EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•14 views

Microsoft Excel Remote Code Execution Vulnerability

Access of resource using incompatible type 'type confusion' in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS7.3AI score0.00498EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•12 views

Microsoft PC Manager Elevation of Privilege Vulnerability

Improper link resolution before file access 'link following' in Microsoft PC Manager allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00441EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•10 views

Microsoft Excel Remote Code Execution Vulnerability

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS7.8AI score0.00573EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•17 views

MS-EVEN RPC Remote Code Execution Vulnerability

Time-of-check time-of-use toctou race condition in Windows Fundamentals allows an authorized attacker to execute code over a network...

7.5CVSS7.4AI score0.0106EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•15 views

Active Directory Certificate Services (AD CS) Denial of Service Vulnerability

Improper input validation in Active Directory Certificate Services AD CS allows an authorized attacker to deny service over a network...

6.5CVSS6.9AI score0.01624EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•16 views

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Use of uninitialized resource in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.8AI score0.01259EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•11 views

Microsoft Defender Elevation of Privilege Vulnerability

External control of file name or path in Microsoft Defender for Endpoint allows an authorized attacker to elevate privileges locally...

6.7CVSS7AI score0.00365EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•15 views

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Out-of-bounds read in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.6AI score0.01094EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•21 views

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Use of uninitialized resource in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.8AI score0.01094EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•11 views

Windows Hyper-V Denial of Service Vulnerability

Improper input validation in Windows Hyper-V allows an unauthorized attacker to deny service locally...

6.2CVSS7AI score0.00462EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•22 views

Universal Print Management Service Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Universal Print Management Service allows an authorized attacker to elevate privileges locally...

7CVSS7.1AI score0.00327EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•10 views

UrlMon Security Feature Bypass Vulnerability

Acceptance of extraneous untrusted data with trusted data in UrlMon allows an unauthorized attacker to bypass a security feature over a network...

7.5CVSS7AI score0.00371EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•23 views

Windows Media Remote Code Execution Vulnerability

Stack-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network...

8.8CVSS7.8AI score0.00837EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•15 views

Windows ExecutionContext Driver Elevation of Privilege Vulnerability

Null pointer dereference in Windows Drivers allows an unauthorized attacker to elevate privileges locally...

7.4CVSS7AI score0.00319EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•15 views

Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability

Time-of-check time-of-use toctou race condition in Windows Virtual Machine Bus allows an unauthorized attacker to execute code locally...

7.7CVSS8.2AI score0.00371EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•16 views

Windows Remote Desktop Services Remote Code Execution Vulnerability

Use after free in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network...

7.5CVSS7.8AI score0.00838EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•18 views

Windows Trusted Runtime Interface Driver Information Disclosure Vulnerability

Use of uninitialized resource in Windows Trusted Runtime Interface Driver allows an authorized attacker to disclose information locally...

5.5CVSS6.7AI score0.00443EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•17 views

Microsoft Defender for Identity Spoofing Vulnerability

Improper authentication in Microsoft Defender for Identity allows an unauthorized attacker to perform spoofing over an adjacent network...

6.5CVSS7.1AI score0.00626EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•15 views

Microsoft Windows Hardware Lab Kit (HLK) Elevation of Privilege Vulnerability

Use of hard-coded credentials in Windows Hardware Lab Kit allows an authorized attacker to elevate privileges locally...

6.7CVSS7.1AI score0.00362EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•53 views

Visual Studio Code Security Feature Bypass Vulnerability

Files or directories accessible to external parties in Visual Studio Code allows an unauthorized attacker to bypass a security feature locally...

7.1CVSS7.2AI score0.00629EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•15 views

Visual Studio Information Disclosure Vulnerability

Insufficient granularity of access control in Visual Studio allows an authorized attacker to disclose information locally...

5.5CVSS6.6AI score0.00425EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•19 views

Windows Common Log File System Driver Elevation of Privilege Vulnerability

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally...

7.8CVSS7.4AI score0.01291EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•9 views

Microsoft Excel Remote Code Execution Vulnerability

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS7.8AI score0.00374EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•12 views

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

Improper privilege management in Windows Secure Kernel Mode allows an authorized attacker to elevate privileges locally...

7CVSS7AI score0.00214EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•10 views

Microsoft SharePoint Server Remote Code Execution Vulnerability

Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker to execute code locally...

7.8CVSS7.3AI score0.02123EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•19 views

Microsoft SharePoint Server Remote Code Execution Vulnerability

Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker to execute code locally...

7CVSS7.3AI score0.01153EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•13 views

Microsoft Excel Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS7.8AI score0.00585EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•16 views

Microsoft PowerPoint Remote Code Execution Vulnerability

Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally...

7.8CVSS7.8AI score0.0049EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•13 views

Microsoft SharePoint Server Elevation of Privilege Vulnerability

Improper privilege management in Microsoft Office SharePoint allows an authorized attacker to elevate privileges locally...

7.8CVSS7AI score0.00531EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•11 views

Microsoft Brokering File System Elevation of Privilege Vulnerability

Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally...

7.8CVSS7.4AI score0.00427EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•11 views

Remote Desktop Client Remote Code Execution Vulnerability

Heap-based buffer overflow in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network...

8.8CVSS7.9AI score0.0109EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•14 views

Remote Desktop Client Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Remote Desktop allows an unauthorized attacker to execute code over a network...

8.8CVSS7.9AI score0.01158EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•11 views

Windows Media Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network...

8.8CVSS7.8AI score0.0088EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•11 views

NTFS Elevation of Privilege Vulnerability

Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00452EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•22 views

Microsoft Outlook Remote Code Execution Vulnerability

Out-of-bounds read in Microsoft Office Outlook allows an unauthorized attacker to execute code locally...

7.8CVSS7.2AI score0.00389EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•27 views

Microsoft Excel Remote Code Execution Vulnerability

Buffer over-read in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

8.4CVSS7.3AI score0.00366EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•320 views

Windows Kernel Information Disclosure Vulnerability

Integer underflow wrap or wraparound in Windows Kernel allows an unauthorized attacker to disclose information over an adjacent network...

5.7CVSS6.6AI score0.00564EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•15 views

Windows Deployment Services Denial of Service Vulnerability

Uncontrolled resource consumption in Windows Deployment Services allows an unauthorized attacker to deny service locally...

6.2CVSS6.9AI score0.00498EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•14 views

Windows Multiple UNC Provider Driver Information Disclosure Vulnerability

Out-of-bounds read in Windows File Server allows an unauthorized attacker to disclose information locally...

4CVSS6.5AI score0.00414EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•13 views

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Out-of-bounds read in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.6AI score0.01064EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•10 views

Windows Remote Access Connection Manager Information Disclosure Vulnerability

Out-of-bounds read in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.6AI score0.01042EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•11 views

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Out-of-bounds read in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.6AI score0.01042EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•26 views

Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability

Uncontrolled resource consumption in Remote Desktop Gateway Service allows an unauthorized attacker to deny service over a network...

7.5CVSS7AI score0.01404EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•303 views

Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability

Sensitive data storage in improperly locked memory in Remote Desktop Gateway Service allows an unauthorized attacker to deny service over a network...

5.9CVSS7AI score0.20634EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•14 views

Microsoft Dataverse Elevation of Privilege Vulnerability

Improper handling of insufficient permissions or privileges in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network...

8.8CVSS6.9AI score0.00755EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/05/13 7:0 a.m.•9 views

Microsoft Excel Remote Code Execution Vulnerability

Access of resource using incompatible type 'type confusion' in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS7.3AI score0.00464EPSS
Exploits0
Total number of security vulnerabilities22103