Mscve - Page 67 of Mscve Vulnerabilities List

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that an exploit for CVE-2025-14174 exists in the wild...

8.8CVSS6.4AI score0.22359EPSS

Exploits10

Microsoft CVE•added 2025/12/14 10:2 p.m.•11 views

usb: storage: sddr55: Reject out-of-bound new_pba

...

7.3CVSS6.7AI score0.0018EPSS

Exploits0

Microsoft CVE•added 2025/12/13 9:2 a.m.•2 views

Util-linux: util-linux: heap buffer overread in setpwnam() when processing 256-byte usernames

...

6.1CVSS7AI score0.00176EPSS

Exploits0

Microsoft CVE•added 2025/12/13 9:2 a.m.•6 views

Glib: integer overflow in glib gio attribute escaping causes heap buffer overflow

...

6.5CVSS7AI score0.00504EPSS

Exploits0

Microsoft CVE•added 2025/12/13 9:1 a.m.•3 views

Glib: glib: buffer underflow in gvariant parser leads to heap corruption

...

9.8CVSS7AI score0.00754EPSS

Exploits0

Microsoft CVE•added 2025/12/11 10:29 p.m.•15 views

Chromium: CVE-2025-14373 Inappropriate implementation in Toolbar

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6.4AI score0.00272EPSS

Exploits0

Microsoft CVE•added 2025/12/11 10:29 p.m.•6 views

Chromium: CVE-2025-14372 Use after free in Password Manager

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.1CVSS6.4AI score0.00224EPSS

Exploits0

Microsoft CVE•added 2025/12/11 9:2 a.m.•8 views

Apache HTTP Server: mod_md (ACME), unintended retry intervals

...

7.5CVSS7AI score0.00402EPSS

Exploits0

Microsoft CVE•added 2025/12/11 9:1 a.m.•6 views

Apache HTTP Server: Server Side Includes adds query string to #exec cmd=...

...

8.3CVSS7AI score0.015EPSS

Exploits0

Microsoft CVE•added 2025/12/11 9:1 a.m.•2 views

c-ares has a Use After Free vulnerability when connection is cleaned up after error

...

5.9CVSS6.7AI score0.0039EPSS

Exploits0

Microsoft CVE•added 2025/12/10 9:3 a.m.•3 views

urllib3 Streaming API improperly handles highly compressed data

...

8.9CVSS7AI score0.00622EPSS

Exploits0

Microsoft CVE•added 2025/12/10 9:2 a.m.•4 views

urllib3 allows an unbounded number of links in the decompression chain

...

8.9CVSS7AI score0.00622EPSS

Exploits0

Microsoft CVE•added 2025/12/10 9:2 a.m.•6 views

net: stmmac: Correctly handle Rx checksum offload errors

...

5.5CVSS7AI score0.00191EPSS

Exploits0

Microsoft CVE•added 2025/12/10 9:2 a.m.•7 views

f2fs: fix infinite loop in __insert_extent_tree()

...

5.5CVSS7AI score0.00186EPSS

Exploits0

Microsoft CVE•added 2025/12/10 9:2 a.m.•4 views

drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb

...

7CVSS7AI score0.00186EPSS

Exploits0

Microsoft CVE•added 2025/12/10 9:2 a.m.•6 views

nvme-fc: use lock accessing port_state and rport state

...

7CVSS7AI score0.00197EPSS

Exploits0

Microsoft CVE•added 2025/12/10 9:1 a.m.•4 views

smb: client: fix potential UAF in smb2_close_cached_fid()

...

7CVSS7AI score0.00191EPSS

Exploits0

Microsoft CVE•added 2025/12/10 9:1 a.m.•7 views

sctp: Prevent TOCTOU out-of-bounds write

...

7CVSS7AI score0.00201EPSS

Exploits0

Microsoft CVE•added 2025/12/10 9:1 a.m.•3 views

nvmet-fc: avoid scheduling association deletion twice

...

7CVSS7AI score0.00197EPSS

Exploits0

Microsoft CVE•added 2025/12/10 9:1 a.m.•6 views

futex: Don't leak robust_list pointer on exec race

...

5.5CVSS7AI score0.00191EPSS

Exploits0

Microsoft CVE•added 2025/12/09 4:0 p.m.•4 views

Windows Admin Center Elevation of Privilege Vulnerability

Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00382EPSS

Exploits0

Microsoft CVE•added 2025/12/09 9:3 a.m.•6 views

NFSD: Fix crash in nfsd4_read_release()

...

5.5CVSS7AI score0.00161EPSS

Exploits0

Microsoft CVE•added 2025/12/09 9:3 a.m.•4 views

btrfs: ensure no dirty metadata is written back for an fs with errors

...

5.5CVSS7AI score0.00156EPSS

Exploits0

Microsoft CVE•added 2025/12/09 9:3 a.m.•4 views

net: bridge: fix use-after-free due to MST port state bypass

...

7CVSS7AI score0.00176EPSS

Exploits0

Microsoft CVE•added 2025/12/09 9:3 a.m.•7 views

fbdev: bitblit: bound-check glyph index in bit_putcs*

...

7.1CVSS7AI score0.00168EPSS

Exploits0

Microsoft CVE•added 2025/12/09 9:3 a.m.•5 views

accel/habanalabs: support mapping cb with vmalloc-backed coherent memory

...

5.5CVSS7AI score0.00156EPSS

Exploits0

Microsoft CVE•added 2025/12/09 9:3 a.m.•6 views

fbcon: Set fb_display[i]->mode to NULL when the mode is released

...

5.5CVSS7AI score0.00161EPSS

Exploits0

Microsoft CVE•added 2025/12/09 9:2 a.m.•3 views

amd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw

...

5.5CVSS7AI score0.00156EPSS

Exploits0

Microsoft CVE•added 2025/12/09 9:2 a.m.•4 views

Bluetooth: MGMT: Fix OOB access in parse_adv_monitor_pattern()

...

5.5CVSS7AI score0.00168EPSS

Exploits0

Microsoft CVE•added 2025/12/09 9:2 a.m.•4 views

fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds

...

5.5CVSS7AI score0.00165EPSS

Exploits0

Microsoft CVE•added 2025/12/09 9:2 a.m.•9 views

Bluetooth: hci_event: validate skb length for unknown CC opcode

...

7.1CVSS7AI score0.00156EPSS

Exploits0

Microsoft CVE•added 2025/12/09 9:2 a.m.•6 views

wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode

...

6.5CVSS7AI score0.00168EPSS

Exploits0

Microsoft CVE•added 2025/12/09 9:2 a.m.•2 views

bpf: Sync pending IRQ work before freeing ring buffer

...

7.8CVSS7AI score0.00161EPSS

Exploits0

Microsoft CVE•added 2025/12/09 9:1 a.m.•1 views

virtio-net: fix received length check in big packets

...

7CVSS7AI score0.00168EPSS

Exploits0

Microsoft CVE•added 2025/12/09 9:1 a.m.•2 views

Bluetooth: bcsp: receive data only if registered

...

5.5CVSS7AI score0.00165EPSS

Exploits0

Microsoft CVE•added 2025/12/09 8:0 a.m.•3 views

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally...

7.8CVSS7.1AI score0.02342EPSS

Exploits2

Microsoft CVE•added 2025/12/09 8:0 a.m.•13 views

PowerShell Remote Code Execution Vulnerability

Improper neutralization of special elements used in a command 'command injection' in Windows PowerShell allows an unauthorized attacker to execute code locally...

7.8CVSS7.5AI score0.01466EPSS

Exploits5

Microsoft CVE•added 2025/12/09 8:0 a.m.•8 views

Windows DWM Core Library Elevation of Privilege Vulnerability

Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS7.4AI score0.00363EPSS

Exploits0

Microsoft CVE•added 2025/12/09 8:0 a.m.•3 views

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network...

8.8CVSS7.9AI score0.01003EPSS

Exploits0

Microsoft CVE•added 2025/12/09 8:0 a.m.•3 views

Windows DWM Core Library Elevation of Privilege Vulnerability

Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS7.4AI score0.00439EPSS

Exploits0

Microsoft CVE•added 2025/12/09 8:0 a.m.•6 views

Microsoft SharePoint Server Spoofing Vulnerability

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

9CVSS6.8AI score0.00992EPSS

Exploits0

Total number of security vulnerabilities21711