Defender For Endpoint Security Vulnerabilities and Issues — Defender For Endpoint CVE List

Improper authorization of an index that contains sensitive information from a Global Files search in Windows Defender allows an authorized attacker to disclose information over a network.

6.5CVSS6.3AI score0.00448EPSS

CVE•added 2023/02/14 8:15 p.m.•82 views

CVE-2023-23379

Microsoft Defender for IoT Elevation of Privilege Vulnerability

7.8CVSS6.9AI score0.00115EPSS

CVE•added 2021/12/15 3:15 p.m.•81 views

CVE-2021-42311

Microsoft Defender for IoT Remote Code Execution Vulnerability

10CVSS8.3AI score0.02681EPSS

CVE•added 2021/12/15 3:15 p.m.•79 views

CVE-2021-43889

Microsoft Defender for IoT Remote Code Execution Vulnerability

7.2CVSS7.8AI score0.00685EPSS

CVE•added 2021/12/15 3:15 p.m.•72 views

CVE-2021-42315

Microsoft Defender for IoT Remote Code Execution Vulnerability

8.8CVSS7.8AI score0.00834EPSS

CVE•added 2021/12/15 3:15 p.m.•72 views

CVE-2021-43882

Microsoft Defender for IoT Remote Code Execution Vulnerability

9.8CVSS8.3AI score0.00578EPSS

CVE•added 2022/09/13 7:15 p.m.•72 views

CVE-2022-35828

Microsoft Defender for Endpoint for Mac Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00216EPSS

CVE•added 2021/12/15 3:15 p.m.•71 views

CVE-2021-42313

Microsoft Defender for IoT Remote Code Execution Vulnerability

10CVSS8.3AI score0.032EPSS

CVE•added 2024/07/09 5:15 p.m.•71 views

CVE-2024-38089

Microsoft Defender for IoT Elevation of Privilege Vulnerability

9.9CVSS9.3AI score0.0236EPSS

CVE•added 2021/12/15 3:15 p.m.•68 views

CVE-2021-42310

Microsoft Defender for IoT Remote Code Execution Vulnerability

9.8CVSS8.3AI score0.00636EPSS

CVE•added 2021/12/15 3:15 p.m.•65 views

CVE-2021-41365

Microsoft Defender for IoT Remote Code Execution Vulnerability

8.8CVSS7.8AI score0.01957EPSS

CVE•added 2021/12/15 3:15 p.m.•65 views

CVE-2021-42314

Microsoft Defender for IoT Remote Code Execution Vulnerability

8.8CVSS7.8AI score0.02118EPSS

CVE•added 2024/12/12 2:4 a.m.•62 views

CVE-2024-49057

Microsoft Defender for Endpoint on Android Spoofing Vulnerability

8.1CVSS7.9AI score0.04101EPSS

CVE•added 2021/12/15 3:15 p.m.•59 views

CVE-2021-43888

Microsoft Defender for IoT Information Disclosure Vulnerability

7.5CVSS7.3AI score0.08189EPSS

CVE•added 2021/12/15 3:15 p.m.•56 views

CVE-2021-42312

Microsoft Defender for IoT Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00226EPSS

CVE•added 2025/05/13 5:15 p.m.•56 views

CVE-2025-26684

External control of file name or path in Microsoft Defender for Endpoint allows an authorized attacker to elevate privileges locally.

6.7CVSS7.2AI score0.00196EPSS

CVE•added 2024/10/08 6:15 p.m.•55 views

CVE-2024-43614

Relative path traversal in Microsoft Defender for Endpoint allows an authorized attacker to perform spoofing locally.

5.5CVSS6.2AI score0.00181EPSS

CVE•added 2025/05/15 8:16 p.m.•53 views

CVE-2025-47161

Improper access control in Microsoft Defender for Endpoint allows an authorized attacker to elevate privileges locally.

7.8CVSS6.3AI score0.01282EPSS