Lucene search
K

21761 matches found

Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•5 views

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Out-of-bounds read in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.6AI score0.01079EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•3 views

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Buffer over-read in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.7AI score0.01079EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•2 views

Microsoft DWM Core Library Elevation of Privilege Vulnerability

Untrusted pointer dereference in Windows DWM allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.0042EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•5 views

Windows Graphics Component Elevation of Privilege Vulnerability

No cwe for this issue in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00457EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•4 views

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Buffer over-read in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.7AI score0.01079EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•4 views

Windows NTLM Elevation of Privilege Vulnerability

Improper authentication in Windows NTLM allows an authorized attacker to elevate privileges over a network...

8.8CVSS7.1AI score0.18706EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•2 views

Microsoft Word Information Disclosure Vulnerability

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to disclose information locally...

7.1CVSS6.5AI score0.00584EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•4 views

Microsoft Excel Remote Code Execution Vulnerability

Free of memory not on the heap in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS7.3AI score0.0054EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•2 views

Microsoft SharePoint Remote Code Execution Vulnerability

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network...

8.8CVSS7.3AI score0.18084EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•2 views

Microsoft Excel Remote Code Execution Vulnerability

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS7.5AI score0.0054EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•3 views

SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Elevation of Privilege Vulnerability

Integer overflow or wraparound in Windows SPNEGO Extended Negotiation allows an authorized attacker to elevate privileges locally...

7.8CVSS7.2AI score0.00263EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•3 views

Windows Kernel Elevation of Privilege Vulnerability

Integer overflow or wraparound in Windows Kernel allows an authorized attacker to elevate privileges locally...

8.8CVSS7.2AI score0.0382EPSS
Exploits2
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•6 views

Local Security Authority Subsystem Service Elevation of Privilege Vulnerability

...

7.8CVSS7AI score0.00416EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•2 views

Windows Defender Firewall Service Elevation of Privilege Vulnerability

Access of resource using incompatible type 'type confusion' in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally...

6.7CVSS6.9AI score0.00465EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•8 views

Windows BitLocker Elevation of Privilege Vulnerability

Use after free in Windows BitLocker allows an authorized attacker to elevate privileges locally...

7.3CVSS7.1AI score0.00619EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•3 views

Windows Connected Devices Platform Service Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally...

7CVSS6.7AI score0.00263EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•4 views

Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability

Use after free in Microsoft Virtual Hard Drive allows an authorized attacker to elevate privileges locally...

7CVSS7AI score0.0035EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•4 views

Capability Access Management Service (camsvc) Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Capability Access Management Service camsvc allows an authorized attacker to elevate privileges locally...

7CVSS7.1AI score0.00263EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•6 views

MapUrlToZone Security Feature Bypass Vulnerability

Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network...

4.3CVSS6.8AI score0.00855EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•4 views

Microsoft Brokering File System Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally...

7CVSS7AI score0.00263EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•6 views

Windows Defender Firewall Service Elevation of Privilege Vulnerability

Access of resource using incompatible type 'type confusion' in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally...

6.7CVSS6.9AI score0.0045EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•4 views

Windows Defender Firewall Service Elevation of Privilege Vulnerability

Access of resource using incompatible type 'type confusion' in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally...

6.7CVSS6.9AI score0.00435EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•10 views

Windows TCP/IP Driver Elevation of Privilege Vulnerability

Time-of-check time-of-use toctou race condition in Windows TCP/IP allows an authorized attacker to elevate privileges locally...

7CVSS6.9AI score0.00349EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•3 views

Windows Hyper-V Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Hyper-V allows an authorized attacker to elevate privileges locally...

7.8CVSS7.1AI score0.00314EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•2 views

Windows Defender Firewall Service Elevation of Privilege Vulnerability

Access of resource using incompatible type 'type confusion' in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally...

6.7CVSS6.9AI score0.00435EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•4 views

Windows Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability

Improper input validation in Windows Local Security Authority Subsystem Service LSASS allows an authorized attacker to deny service over a network...

6.5CVSS5.4AI score0.01367EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•5 views

HTTP.sys Denial of Service Vulnerability

Out-of-bounds read in Windows Internet Information Services allows an unauthorized attacker to deny service over a network...

7.5CVSS6.8AI score0.01345EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•2 views

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network...

8.8CVSS7.8AI score0.00843EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•6 views

Windows Management Service Elevation of Privilege Vulnerability

Use after free in Windows Management Services allows an unauthorized attacker to elevate privileges locally...

7.4CVSS7.1AI score0.00382EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•3 views

Windows Hyper-V Elevation of Privilege Vulnerability

Improper access control in Windows Hyper-V allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.02586EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•8 views

Windows Defender Firewall Service Elevation of Privilege Vulnerability

Access of resource using incompatible type 'type confusion' in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally...

6.7CVSS6.9AI score0.0045EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•3 views

Windows MultiPoint Services Elevation of Privilege Vulnerability

Improper access control in Windows MultiPoint Services allows an authorized attacker to elevate privileges locally...

7.3CVSS6.9AI score0.00489EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•8 views

Windows Hyper-V Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Hyper-V allows an authorized attacker to elevate privileges locally...

7CVSS7.1AI score0.00386EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•2 views

Windows Hyper-V Elevation of Privilege Vulnerability

Integer overflow or wraparound in Windows Hyper-V allows an authorized attacker to elevate privileges locally...

7.8CVSS7.2AI score0.00417EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•4 views

Windows Defender Firewall Service Elevation of Privilege Vulnerability

Access of resource using incompatible type 'type confusion' in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally...

6.7CVSS6.9AI score0.0045EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•3 views

Windows Graphics Component Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally...

7CVSS7AI score0.00263EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•3 views

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Buffer over-read in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...

6.5CVSS6.7AI score0.01079EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•4 views

Microsoft Excel Information Disclosure Vulnerability

Buffer over-read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally...

5.5CVSS6.6AI score0.00601EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 7:0 a.m.•6 views

Microsoft Excel Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS7.7AI score0.0054EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 1:1 a.m.•8 views

wifi: ath11k: fix sleeping-in-atomic in ath11k_mac_op_set_bitrate_mask()

...

5.5CVSS7AI score0.00135EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/09 1:1 a.m.•2 views

f2fs: vm_unmap_ram() may be called from an invalid context

...

5.5CVSS7AI score0.00137EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/07 8:15 a.m.•4 views

x86/cpu/hygon: Add missing resctrl_cpu_detect() in bsp_init helper

...

5.5CVSS6.8AI score0.00159EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/07 8:14 a.m.•4 views

net: usb: asix_devices: Fix PHY address mask in MDIO bus initialization

...

7.1CVSS6.9AI score0.00149EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/07 8:14 a.m.•6 views

tracing: Limit access to parser->buffer when trace_get_user failed

...

7.1CVSS6.8AI score0.00164EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/07 8:14 a.m.•3 views

scsi: qla4xxx: Prevent a potential error pointer dereference

...

5.5CVSS6.8AI score0.0016EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/07 8:13 a.m.•5 views

drm/nouveau/nvif: Fix potential memory leak in nvif_vmm_ctor().

...

5.5CVSS7AI score0.00145EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/07 8:13 a.m.•1 views

media: usbtv: Lock resolution while streaming

...

5.5CVSS6.8AI score0.00148EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/07 8:13 a.m.•9 views

iio: imu: bno055: fix OOB access of hw_xlate array

...

7.1CVSS6.8AI score0.00139EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/07 8:13 a.m.•3 views

fs/buffer: fix use-after-free when call bh_read() helper

...

7.8CVSS6.8AI score0.00162EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/07 8:13 a.m.•7 views

netfilter: nf_reject: don't leak dst refcount for loopback packets

...

5.5CVSS6.8AI score0.0016EPSS
Exploits0
Total number of security vulnerabilities21761