Lucene search
K

22103 matches found

Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•13 views

Windows Subsystem for Linux Elevation of Privilege Vulnerability

Out-of-bounds read in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...

7.8CVSS6.8AI score0.00514EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•21 views

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Buffer over-read in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.6AI score0.01516EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•13 views

Windows Media Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Media allows an authorized attacker to execute code locally...

7.8CVSS7.8AI score0.00554EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•12 views

Lightweight Directory Access Protocol (LDAP) Client Remote Code Execution Vulnerability

Use after free in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to execute code over a network...

8.1CVSS7.7AI score0.07651EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•16 views

Windows Local Session Manager (LSM) Denial of Service Vulnerability

Exposed dangerous method or function in Windows Local Session Manager LSM allows an authorized attacker to deny service over a network...

6.5CVSS6.8AI score0.02087EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•25 views

Windows Hello Spoofing Vulnerability

Automated recognition mechanism with inadequate detection or handling of adversarial input perturbations in Windows Hello allows an unauthorized attacker to perform spoofing locally...

5.1CVSS6.8AI score0.00496EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•14 views

Windows Digital Media Elevation of Privilege Vulnerability

Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally...

7CVSS7.3AI score0.00415EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•6 views

Microsoft Office Remote Code Execution Vulnerability

Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally...

7.8CVSS7.2AI score0.00719EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•23 views

Windows BitLocker Security Feature Bypass Vulnerability

Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack...

6.8CVSS7.7AI score0.00767EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•13 views

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network...

8.8CVSS7.7AI score0.01207EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•64 views

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network...

8.8CVSS7.7AI score0.01207EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•17 views

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network...

8.8CVSS7.7AI score0.01207EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•11 views

Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability

Time-of-check time-of-use toctou race condition in Windows Local Security Authority LSA allows an authorized attacker to elevate privileges locally...

7CVSS6.8AI score0.0029EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•12 views

Windows NTFS Information Disclosure Vulnerability

Improper access control in Windows NTFS allows an authorized attacker to disclose file path information under a folder where the attacker doesn't have permission to list content...

6.5CVSS6.4AI score0.02719EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•29 views

Windows Common Log File System Driver Elevation of Privilege Vulnerability

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally...

7.8CVSS7.5AI score0.1806EPSS
Exploits4
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•13 views

Microsoft Excel Remote Code Execution Vulnerability

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS7.7AI score0.0062EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•39 views

Microsoft Word Remote Code Execution Vulnerability

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS7.7AI score0.00691EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•9 views

Microsoft Dynamics Business Central Information Disclosure Vulnerability

Improper input validation in Dynamics Business Central allows an authorized attacker to disclose information locally...

5.5CVSS6.6AI score0.00569EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•12 views

Microsoft Office Elevation of Privilege Vulnerability

Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally...

7.3CVSS7.3AI score0.01004EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•17 views

Microsoft SharePoint Remote Code Execution Vulnerability

Improper authorization in Microsoft Office SharePoint allows an authorized attacker to execute code over a network...

8.8CVSS7.2AI score0.04647EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•42 views

Microsoft Excel Remote Code Execution Vulnerability

Access of resource using incompatible type 'type confusion' in Microsoft Office allows an unauthorized attacker to execute code locally...

7.8CVSS7.3AI score0.0101EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•9 views

Microsoft Office Remote Code Execution Vulnerability

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...

7.8CVSS7.7AI score0.01047EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•11 views

Microsoft Excel Remote Code Execution Vulnerability

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS7.7AI score0.01993EPSS
Exploits4
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•14 views

Microsoft Office Remote Code Execution Vulnerability

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...

7.8CVSS7.7AI score0.01047EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•15 views

Active Directory Certificate Services Elevation of Privilege Vulnerability

Weak authentication in Windows Active Directory Certificate Services allows an authorized attacker to elevate privileges over a network...

8.8CVSS7AI score0.03065EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•14 views

Kerberos Key Distribution Proxy Service Denial of Service Vulnerability

Insufficient resource pool in Windows Kerberos allows an unauthorized attacker to deny service over a network...

7.5CVSS6.8AI score0.0186EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•10 views

Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability

Heap-based buffer overflow in Windows Local Security Authority LSA allows an authorized attacker to elevate privileges locally...

7CVSS7.4AI score0.00398EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•15 views

Windows Update Stack Elevation of Privilege Vulnerability

Sensitive data storage in improperly locked memory in Windows Update Stack allows an authorized attacker to elevate privileges locally...

7CVSS6.9AI score0.0032EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•13 views

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Use of uninitialized resource in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.6AI score0.01516EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•15 views

Windows Mark of the Web Security Feature Bypass Vulnerability

Protection mechanism failure in Windows Mark of the Web MOTW allows an unauthorized attacker to bypass a security feature over a network...

5.4CVSS6.8AI score0.01458EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•15 views

HTTP.sys Denial of Service Vulnerability

Uncontrolled resource consumption in Windows HTTP.sys allows an unauthorized attacker to deny service over a network...

7.5CVSS6.8AI score0.0186EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•14 views

Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability

Stack-based buffer overflow in Microsoft Virtual Hard Drive allows an authorized attacker to elevate privileges locally...

7.8CVSS7.3AI score0.00503EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•10 views

Win32k Elevation of Privilege Vulnerability

Use after free in Windows Win32K - GRFX allows an unauthorized attacker to elevate privileges over a network...

7.5CVSS7.2AI score0.01012EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•12 views

Win32k Elevation of Privilege Vulnerability

Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...

6.7CVSS7.4AI score0.00504EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•11 views

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Exposure of sensitive information to an unauthorized actor in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.4AI score0.01516EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•13 views

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Buffer over-read in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.6AI score0.01516EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•46 views

Visual Studio Code Elevation of Privilege Vulnerability

Improper access control in Visual Studio Code allows an authorized attacker to elevate privileges locally...

6.8CVSS7.4AI score0.00393EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•17 views

ASP.NET Core and Visual Studio Denial of Service Vulnerability

Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network...

7.5CVSS6.8AI score0.01383EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•17 views

Microsoft DWM Core Library Elevation of Privilege Vulnerability

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00514EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•25 views

Windows Mobile Broadband Driver Elevation of Privilege Vulnerability

Improper input validation in Windows Mobile Broadband allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00503EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•16 views

DirectX Graphics Kernel Elevation of Privilege Vulnerability

Untrusted pointer dereference in Windows Kernel Memory allows an authorized attacker to elevate privileges locally...

7.8CVSS6.8AI score0.00741EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•56 views

Active Directory Domain Services Elevation of Privilege Vulnerability

Improper access control in Active Directory Domain Services allows an authorized attacker to elevate privileges over a network...

7.5CVSS6.8AI score0.02221EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•15 views

Windows Cryptographic Services Information Disclosure Vulnerability

Use of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allows an authorized attacker to disclose information locally...

5.5CVSS6.6AI score0.00406EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•21 views

Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

Incorrect default permissions in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00935EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•15 views

Visual Studio Elevation of Privilege Vulnerability

Improper access control in Visual Studio allows an authorized attacker to elevate privileges locally...

7.3CVSS7AI score0.00786EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•18 views

Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

Improper privilege management in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...

7.8CVSS7AI score0.00935EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•12 views

Windows Power Dependency Coordinator Information Disclosure Vulnerability

Exposure of sensitive information to an unauthorized actor in Windows Power Dependency Coordinator allows an authorized attacker to disclose information locally...

5.5CVSS6.3AI score0.00744EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•16 views

Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability

Insufficient verification of data authenticity in Windows Virtualization-Based Security VBS Enclave allows an authorized attacker to bypass a security feature locally...

6CVSS6.9AI score0.00369EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•6 views

NTFS Elevation of Privilege Vulnerability

Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally...

7.8CVSS6.8AI score0.00657EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•15 views

Microsoft OpenSSH for Windows Elevation of Privilege Vulnerability

Improper input validation in OpenSSH for Windows allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00554EPSS
Exploits0
Total number of security vulnerabilities22103