Lucene search
K

22103 matches found

Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•47 views

Windows TCP/IP Remote Code Execution Vulnerability

Sensitive data storage in improperly locked memory in Windows TCP/IP allows an unauthorized attacker to execute code over a network...

7.5CVSS7.2AI score0.01463EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•14 views

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network...

7.5CVSS7.8AI score0.01094EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•46 views

Visual Studio Code Elevation of Privilege Vulnerability

Improper access control in Visual Studio Code allows an authorized attacker to elevate privileges locally...

6.8CVSS7.4AI score0.00393EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•94 views

Microsoft DWM Core Library Elevation of Privilege Vulnerability

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00514EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•18 views

Microsoft DWM Core Library Elevation of Privilege Vulnerability

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00514EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•12 views

Windows Admin Center in Azure Portal Information Disclosure Vulnerability

External control of file name or path in Azure Portal Windows Admin Center allows an unauthorized attacker to disclose information locally...

6.2CVSS6.7AI score0.00838EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•21 views

Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

Incorrect default permissions in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00935EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•18 views

Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

Improper privilege management in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...

7.8CVSS7AI score0.00935EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•14 views

Windows Kernel Elevation of Privilege Vulnerability

Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally...

7.8CVSS6.8AI score0.00544EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•16 views

Windows Graphics Component Elevation of Privilege Vulnerability

Sensitive data storage in improperly locked memory in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...

7CVSS6.8AI score0.00312EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•16 views

Windows Bluetooth Service Elevation of Privilege Vulnerability

Heap-based buffer overflow in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally...

7.8CVSS7.4AI score0.00524EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•14 views

Windows Secure Channel Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Secure Channel allows an authorized attacker to elevate privileges locally...

7CVSS7AI score0.00305EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•14 views

Windows Standards-Based Storage Management Service Denial of Service Vulnerability

Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network...

7.5CVSS6.8AI score0.01771EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•67 views

Windows Telephony Service Remote Code Execution Vulnerability

Stack-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network...

8.8CVSS7.6AI score0.01102EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•22 views

Windows Remote Desktop Services Remote Code Execution Vulnerability

Use after free in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network...

8.1CVSS7.8AI score0.0705EPSS
Exploits2
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•14 views

Windows Universal Plug and Play (UPnP) Device Host Elevation of Privilege Vulnerability

Sensitive data storage in improperly locked memory in Windows Universal Plug and Play UPnP Device Host allows an authorized attacker to elevate privileges over a network...

7.5CVSS6.8AI score0.00704EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•13 views

Windows Subsystem for Linux Elevation of Privilege Vulnerability

Out-of-bounds read in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...

7.8CVSS6.8AI score0.00514EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•14 views

Windows Remote Desktop Services Remote Code Execution Vulnerability

Use after free in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network...

8.1CVSS7.7AI score0.01152EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•19 views

Windows Standards-Based Storage Management Service Denial of Service Vulnerability

Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network...

7.5CVSS6.8AI score0.01927EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•15 views

Windows Secure Channel Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Secure Channel allows an authorized attacker to elevate privileges locally...

7CVSS7AI score0.00336EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•16 views

Windows Local Session Manager (LSM) Denial of Service Vulnerability

Exposed dangerous method or function in Windows Local Session Manager LSM allows an authorized attacker to deny service over a network...

6.5CVSS6.8AI score0.02087EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•25 views

Windows Hello Spoofing Vulnerability

Automated recognition mechanism with inadequate detection or handling of adversarial input perturbations in Windows Hello allows an unauthorized attacker to perform spoofing locally...

5.1CVSS6.8AI score0.00496EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•7 views

Microsoft Office Remote Code Execution Vulnerability

Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally...

7.8CVSS7.2AI score0.00719EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•10 views

Azure Local Cluster Information Disclosure Vulnerability

Insufficiently protected credentials in Azure Local Cluster allows an authorized attacker to disclose information locally...

7.3CVSS6.6AI score0.01153EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•54 views

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Buffer over-read in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.6AI score0.01386EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•13 views

Windows NTFS Information Disclosure Vulnerability

Improper access control in Windows NTFS allows an authorized attacker to disclose file path information under a folder where the attacker doesn't have permission to list content...

6.5CVSS6.4AI score0.02719EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•15 views

Microsoft DWM Core Library Elevation of Privilege Vulnerability

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00528EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•12 views

Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability

Time-of-check time-of-use toctou race condition in Windows Local Security Authority LSA allows an authorized attacker to elevate privileges locally...

7CVSS6.8AI score0.0029EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•39 views

Microsoft Word Remote Code Execution Vulnerability

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS7.7AI score0.00691EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•61 views

Microsoft OneNote Security Feature Bypass Vulnerability

Incomplete list of disallowed inputs in Microsoft Office OneNote allows an unauthorized attacker to bypass a security feature locally...

7.8CVSS6.8AI score0.0074EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•12 views

Microsoft Office Elevation of Privilege Vulnerability

Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally...

7.3CVSS7.3AI score0.01004EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•43 views

Microsoft Excel Remote Code Execution Vulnerability

Access of resource using incompatible type 'type confusion' in Microsoft Office allows an unauthorized attacker to execute code locally...

7.8CVSS7.3AI score0.0101EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•41 views

Microsoft Excel Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS7.8AI score0.0101EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•14 views

Microsoft System Center Elevation of Privilege Vulnerability

Untrusted search path in System Center allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00751EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•37 views

Microsoft Word Remote Code Execution Vulnerability

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS7.7AI score0.00742EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•15 views

Microsoft Office Remote Code Execution Vulnerability

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...

7.8CVSS7.7AI score0.01047EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•15 views

Microsoft Office Remote Code Execution Vulnerability

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...

7.8CVSS7.7AI score0.00779EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•16 views

Microsoft Office Elevation of Privilege Vulnerability

Improper access control in Microsoft Office allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.01082EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•16 views

Active Directory Certificate Services Elevation of Privilege Vulnerability

Weak authentication in Windows Active Directory Certificate Services allows an authorized attacker to elevate privileges over a network...

8.8CVSS7AI score0.03065EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•15 views

Kerberos Key Distribution Proxy Service Denial of Service Vulnerability

Insufficient resource pool in Windows Kerberos allows an unauthorized attacker to deny service over a network...

7.5CVSS6.8AI score0.0186EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•9 views

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network...

8.8CVSS7.7AI score0.01498EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•15 views

Windows Update Stack Elevation of Privilege Vulnerability

Sensitive data storage in improperly locked memory in Windows Update Stack allows an authorized attacker to elevate privileges locally...

7CVSS6.9AI score0.0032EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•14 views

Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability

Stack-based buffer overflow in Microsoft Virtual Hard Drive allows an authorized attacker to elevate privileges locally...

7.8CVSS7.3AI score0.00503EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•14 views

Microsoft Streaming Service Denial of Service Vulnerability

Sensitive data storage in improperly locked memory in Microsoft Streaming Service allows an unauthorized attacker to deny service over a network...

5.9CVSS6.7AI score0.01076EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•11 views

Win32k Elevation of Privilege Vulnerability

Use after free in Windows Win32K - GRFX allows an unauthorized attacker to elevate privileges over a network...

7.5CVSS7.2AI score0.01012EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•19 views

Windows Standards-Based Storage Management Service Denial of Service Vulnerability

Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network...

7.5CVSS6.8AI score0.01672EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•12 views

Win32k Elevation of Privilege Vulnerability

Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...

6.7CVSS7.4AI score0.00504EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•18 views

Windows Media Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Media allows an authorized attacker to execute code locally...

7.8CVSS7.8AI score0.00554EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•11 views

Windows upnphost.dll Elevation of Privilege Vulnerability

Sensitive data storage in improperly locked memory in Windows upnphost.dll allows an authorized attacker to elevate privileges locally...

7CVSS6.8AI score0.00291EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•14 views

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Buffer over-read in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.6AI score0.01516EPSS
Exploits0
Total number of security vulnerabilities22103