2233 matches found
CVE-2024-37987
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-38013
Microsoft Windows Server Backup Elevation of Privilege Vulnerability
CVE-2024-43517
Microsoft ActiveX Data Objects Remote Code Execution Vulnerability
CVE-2024-43532
Remote Registry Service Elevation of Privilege Vulnerability
CVE-2025-21210
Windows BitLocker Information Disclosure Vulnerability
CVE-2025-21228
Windows Digital Media Elevation of Privilege Vulnerability
CVE-2025-21231
IP Helper Denial of Service Vulnerability
CVE-2025-26670
Use after free in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to execute code over a network.
CVE-2020-16999
Windows WalletService Information Disclosure Vulnerability
CVE-2020-17031
Windows Remote Access Elevation of Privilege Vulnerability
CVE-2020-17075
Windows USO Core Worker Elevation of Privilege Vulnerability
CVE-2021-1690
Windows WalletService Elevation of Privilege Vulnerability
CVE-2022-35746
Windows Digital Media Receiver Elevation of Privilege Vulnerability
CVE-2022-35747
Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability
CVE-2022-35759
Windows Local Security Authority (LSA) Denial of Service Vulnerability
CVE-2023-33173
Remote Procedure Call Runtime Denial of Service Vulnerability
CVE-2024-38142
Windows Secure Kernel Mode Elevation of Privilege Vulnerability
CVE-2024-49121
Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability
CVE-2025-21197
Improper access control in Windows NTFS allows an authorized attacker to disclose file path information under a folder where the attacker doesn't have permission to list content.
CVE-2025-21244
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-24051
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
CVE-2025-26637
Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
CVE-2025-26663
Use after free in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to execute code over a network.
CVE-2025-26665
Sensitive data storage in improperly locked memory in Windows upnphost.dll allows an authorized attacker to elevate privileges locally.
CVE-2025-27738
Improper access control in Windows Resilient File System (ReFS) allows an authorized attacker to disclose information over a network.
CVE-2025-29966
Heap-based buffer overflow in Windows Remote Desktop allows an unauthorized attacker to execute code over a network.
CVE-2025-33070
Use of uninitialized resource in Windows Netlogon allows an unauthorized attacker to elevate privileges over a network.
CVE-2020-0875
An information disclosure vulnerability exists in how splwow64.exe handles certain calls. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system (low-integrity to medium-integrity).This vulnerability by itself does not allow arbitr...
CVE-2020-1250
An information disclosure vulnerability exists when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.To exploit this vulnerability, an attacker would have to log on ...
CVE-2020-1252
A remote code execution vulnerability exists when Windows improperly handles objects in memory. To exploit the vulnerability an attacker would have to convince a user to run a specially crafted application.An attacker who successfully exploited this vulnerability could execute arbitrary code and ta...
CVE-2021-28435
Windows Event Tracing Information Disclosure Vulnerability
CVE-2022-37993
Windows Group Policy Preference Client Elevation of Privilege Vulnerability
CVE-2023-33168
Remote Procedure Call Runtime Denial of Service Vulnerability
CVE-2023-35641
Internet Connection Sharing (ICS) Remote Code Execution Vulnerability
CVE-2024-37975
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-38011
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-38050
Windows Workstation Service Elevation of Privilege Vulnerability
CVE-2024-38070
Windows LockDown Policy (WLDP) Security Feature Bypass Vulnerability
CVE-2024-38145
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability
CVE-2024-38237
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
CVE-2024-43509
Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2024-43620
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2024-43643
Windows USB Video Class System Driver Elevation of Privilege Vulnerability
CVE-2025-21202
Windows Recovery Environment Agent Elevation of Privilege Vulnerability
CVE-2025-21290
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
CVE-2025-21359
Windows Kernel Security Feature Bypass Vulnerability
CVE-2025-24046
Use after free in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally.
CVE-2025-26686
Sensitive data storage in improperly locked memory in Windows TCP/IP allows an unauthorized attacker to execute code over a network.
CVE-2025-27735
Insufficient verification of data authenticity in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to bypass a security feature locally.
CVE-2025-27741
Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.