Powershell Security Vulnerabilities and Issues — Powershell CVE List

A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a "one-shot" decompression request to a script can trigger a crash, which happens when copying over chunks of data larger than 2 GiB. It is recommended to update your Brotli libr...

6.5CVSS6.6AI score0.00388EPSS

CVE•added 2023/10/10 6:15 p.m.•419 views

CVE-2023-38171

Microsoft QUIC Denial of Service Vulnerability

7.5CVSS7.4AI score0.05105EPSS

CVE•added 2023/10/10 6:15 p.m.•404 views

CVE-2023-36435

Microsoft QUIC Denial of Service Vulnerability

7.5CVSS7.4AI score0.01201EPSS

CVE•added 2024/07/09 5:15 p.m.•376 views

CVE-2024-30105

.NET and Visual Studio Denial of Service Vulnerability

7.5CVSS7.6AI score0.01348EPSS

CVE•added 2022/03/09 5:15 p.m.•340 views

CVE-2022-24512

.NET and Visual Studio Remote Code Execution Vulnerability

6.8CVSS7.2AI score0.00247EPSS

CVE•added 2022/05/10 9:15 p.m.•302 views

CVE-2022-23267

.NET and Visual Studio Denial of Service Vulnerability

7.5CVSS7.5AI score0.01969EPSS

CVE•added 2025/01/14 6:15 p.m.•295 views

CVE-2025-21171

.NET Remote Code Execution Vulnerability

7.5CVSS7.8AI score0.00179EPSS

CVE•added 2024/07/09 5:15 p.m.•292 views

CVE-2024-38095

.NET and Visual Studio Denial of Service Vulnerability

7.5CVSS6.4AI score0.02007EPSS

CVE•added 2024/11/12 6:15 p.m.•281 views

CVE-2024-43498

.NET and Visual Studio Remote Code Execution Vulnerability

9.8CVSS9.4AI score0.01561EPSS

CVE•added 2024/03/12 5:15 p.m.•259 views

CVE-2024-21392

.NET and Visual Studio Denial of Service Vulnerability

7.5CVSS7.7AI score0.00554EPSS

CVE•added 2024/11/12 6:15 p.m.•258 views

CVE-2024-43499

.NET and Visual Studio Denial of Service Vulnerability

7.5CVSS7.5AI score0.01123EPSS

CVE•added 2024/03/12 5:15 p.m.•245 views

CVE-2024-26190

Microsoft QUIC Denial of Service Vulnerability

7.5CVSS7.4AI score0.00623EPSS

CVE•added 2023/02/14 9:15 p.m.•242 views

CVE-2023-21808

.NET and Visual Studio Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.01397EPSS

CVE•added 2024/04/09 5:15 p.m.•232 views

CVE-2024-21409

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

7.3CVSS7.5AI score0.54695EPSS

CVE•added 2022/12/13 7:15 p.m.•223 views

CVE-2022-41089

.NET Framework Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.08927EPSS

CVE•added 2020/05/21 11:15 p.m.•221 views

CVE-2020-1108

A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET Framework Denial of Service Vulnerability'.

7.5CVSS7.3AI score0.03486EPSS

CVE•added 2023/01/10 10:15 p.m.•213 views

CVE-2023-21538

.NET Denial of Service Vulnerability

7.5CVSS7.5AI score0.00654EPSS

CVE•added 2023/06/14 3:15 p.m.•209 views

CVE-2023-24897

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.02262EPSS

CVE•added 2022/04/15 7:15 p.m.•208 views

CVE-2022-26788

PowerShell Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00406EPSS

CVE•added 2021/08/12 6:15 p.m.•193 views

CVE-2021-34485

.NET Core and Visual Studio Information Disclosure Vulnerability

5.5CVSS5.8AI score0.00707EPSS

CVE•added 2021/10/13 1:15 a.m.•183 views

CVE-2021-41355

.NET Core and Visual Studio Information Disclosure Vulnerability

5.7CVSS5.5AI score0.03608EPSS

CVE•added 2022/08/09 8:15 p.m.•175 views

CVE-2022-34716

.NET Spoofing Vulnerability

5.9CVSS5.9AI score0.00963EPSS

CVE•added 2023/06/14 3:15 p.m.•172 views

CVE-2023-24895

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.01252EPSS

CVE•added 2023/06/14 3:15 p.m.•166 views

CVE-2023-24936

.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability

7.5CVSS7.7AI score0.01539EPSS

CVE•added 2023/06/14 3:15 p.m.•165 views

CVE-2023-29331

.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability

7.5CVSS7.6AI score0.01714EPSS

CVE•added 2024/10/08 6:15 p.m.•155 views

CVE-2024-43484

.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability

7.5CVSS7.6AI score0.01791EPSS

CVE•added 2023/06/14 12:15 a.m.•152 views

CVE-2023-33128

.NET and Visual Studio Remote Code Execution Vulnerability

7.3CVSS7.6AI score0.01466EPSS

CVE•added 2025/06/13 2:15 a.m.•148 views

CVE-2025-30399

Untrusted search path in .NET and Visual Studio allows an unauthorized attacker to execute code over a network.

7.5CVSS7.6AI score0.00037EPSS

CVE•added 2024/10/08 6:15 p.m.•143 views

CVE-2024-43483

.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability

7.5CVSS7.6AI score0.01052EPSS

CVE•added 2024/05/14 5:17 p.m.•141 views

CVE-2024-30045

.NET and Visual Studio Remote Code Execution Vulnerability

6.3CVSS6.8AI score0.00287EPSS

CVE•added 2023/06/14 12:15 a.m.•139 views

CVE-2023-33126

.NET and Visual Studio Remote Code Execution Vulnerability

7.3CVSS7.4AI score0.01083EPSS

CVE•added 2023/06/14 12:15 a.m.•135 views

CVE-2023-32032

.NET and Visual Studio Elevation of Privilege Vulnerability

6.5CVSS6.9AI score0.00152EPSS

CVE•added 2024/10/08 6:15 p.m.•132 views

CVE-2024-43485

.NET and Visual Studio Denial of Service Vulnerability

7.5CVSS7.5AI score0.01052EPSS

CVE•added 2022/12/13 7:15 p.m.•129 views

CVE-2022-41076

PowerShell Remote Code Execution Vulnerability

8.5CVSS8.6AI score0.37991EPSS

CVE•added 2023/11/20 4:15 p.m.•118 views

CVE-2023-36013

PowerShell Information Disclosure Vulnerability

6.5CVSS6.1AI score0.02494EPSS

CVE•added 2022/12/13 7:15 p.m.•110 views

CVE-2022-41121

Windows Graphics Component Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.00179EPSS

CVE•added 2023/07/11 6:15 p.m.•109 views

CVE-2023-33127

.NET and Visual Studio Elevation of Privilege Vulnerability

8.1CVSS8AI score0.01542EPSS

CVE•added 2020/09/11 5:15 p.m.•87 views

CVE-2020-0951

A security feature bypass vulnerability exists in Windows Defender Application Control (WDAC) which could allow an attacker to bypass WDAC enforcement. An attacker who successfully exploited this vulnerability could execute PowerShell commands that would be blocked by WDAC.To exploit the vulnerabil...

7.2CVSS7.7AI score0.02554EPSS

CVE•added 2021/12/15 3:15 p.m.•63 views

CVE-2021-43896

Microsoft PowerShell Spoofing Vulnerability

5.5CVSS5.6AI score0.03313EPSS

CVE•added 2018/07/11 12:29 a.m.•52 views

CVE-2018-8327

A remote code execution vulnerability exists in PowerShell Editor Services, aka "PowerShell Editor Services Remote Code Execution Vulnerability." This affects PowerShell Editor, PowerShell Extension.

10CVSS9.7AI score0.21261EPSS