2231 matches found
CVE-2025-24067
Heap-based buffer overflow in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally.
CVE-2020-16999
Windows WalletService Information Disclosure Vulnerability
CVE-2021-1690
Windows WalletService Elevation of Privilege Vulnerability
CVE-2021-26882
Remote Access API Elevation of Privilege Vulnerability
CVE-2021-43236
Microsoft Message Queuing Information Disclosure Vulnerability
CVE-2022-35746
Windows Digital Media Receiver Elevation of Privilege Vulnerability
CVE-2022-35747
Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability
CVE-2022-35759
Windows Local Security Authority (LSA) Denial of Service Vulnerability
CVE-2023-33173
Remote Procedure Call Runtime Denial of Service Vulnerability
CVE-2024-30068
Windows Kernel Elevation of Privilege Vulnerability
CVE-2024-38142
Windows Secure Kernel Mode Elevation of Privilege Vulnerability
CVE-2024-43517
Microsoft ActiveX Data Objects Remote Code Execution Vulnerability
CVE-2024-43532
Remote Registry Service Elevation of Privilege Vulnerability
CVE-2024-49121
Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability
CVE-2025-21244
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-24051
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
CVE-2025-24996
External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.
CVE-2025-26670
Use after free in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to execute code over a network.
CVE-2020-0875
An information disclosure vulnerability exists in how splwow64.exe handles certain calls. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system (low-integrity to medium-integrity).This vulnerability by itself does not allow arbitr...
CVE-2020-1250
An information disclosure vulnerability exists when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.To exploit this vulnerability, an attacker would have to log on ...
CVE-2020-17031
Windows Remote Access Elevation of Privilege Vulnerability
CVE-2020-17075
Windows USO Core Worker Elevation of Privilege Vulnerability
CVE-2021-28435
Windows Event Tracing Information Disclosure Vulnerability
CVE-2022-37993
Windows Group Policy Preference Client Elevation of Privilege Vulnerability
CVE-2023-33168
Remote Procedure Call Runtime Denial of Service Vulnerability
CVE-2024-37975
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-38011
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-38050
Windows Workstation Service Elevation of Privilege Vulnerability
CVE-2024-43509
Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2024-43620
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2024-43643
Windows USB Video Class System Driver Elevation of Privilege Vulnerability
CVE-2025-21197
Improper access control in Windows NTFS allows an authorized attacker to disclose file path information under a folder where the attacker doesn't have permission to list content.
CVE-2025-21202
Windows Recovery Environment Agent Elevation of Privilege Vulnerability
CVE-2025-21290
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
CVE-2025-21359
Windows Kernel Security Feature Bypass Vulnerability
CVE-2025-24046
Use after free in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally.
CVE-2025-26637
Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
CVE-2025-26663
Use after free in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to execute code over a network.
CVE-2025-27738
Improper access control in Windows Resilient File System (ReFS) allows an authorized attacker to disclose information over a network.
CVE-2025-29966
Heap-based buffer overflow in Windows Remote Desktop allows an unauthorized attacker to execute code over a network.
CVE-2025-33070
Use of uninitialized resource in Windows Netlogon allows an unauthorized attacker to elevate privileges over a network.
CVE-2020-1252
A remote code execution vulnerability exists when Windows improperly handles objects in memory. To exploit the vulnerability an attacker would have to convince a user to run a specially crafted application.An attacker who successfully exploited this vulnerability could execute arbitrary code and ta...
CVE-2021-26862
Windows Installer Elevation of Privilege Vulnerability
CVE-2021-26873
Windows User Profile Service Elevation of Privilege Vulnerability
CVE-2023-35629
Microsoft USBHUB 3.0 Device Driver Remote Code Execution Vulnerability
CVE-2023-35641
Internet Connection Sharing (ICS) Remote Code Execution Vulnerability
CVE-2024-30079
Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
CVE-2024-30093
Windows Storage Elevation of Privilege Vulnerability
CVE-2024-35270
Windows iSCSI Service Denial of Service Vulnerability
CVE-2024-38145
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability