2194 matches found
CVE-2025-26686
Sensitive data storage in improperly locked memory in Windows TCP/IP allows an unauthorized attacker to execute code over a network.
CVE-2025-27735
Insufficient verification of data authenticity in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to bypass a security feature locally.
CVE-2020-1559
An elevation of privilege vulnerability exists when the Windows Storage Services improperly handle file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.To exploit the vulnerability, an attacker would first need code execution on a victim system. ...
CVE-2021-26866
Windows Update Service Elevation of Privilege Vulnerability
CVE-2021-26873
Windows User Profile Service Elevation of Privilege Vulnerability
CVE-2021-26884
Windows Media Photo Codec Information Disclosure Vulnerability
CVE-2024-37971
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37972
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37983
Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability
CVE-2024-38046
PowerShell Elevation of Privilege Vulnerability
CVE-2024-38052
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
CVE-2024-38070
Windows LockDown Policy (WLDP) Security Feature Bypass Vulnerability
CVE-2024-38091
Microsoft WS-Discovery Denial of Service Vulnerability
CVE-2024-38237
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
CVE-2024-43487
Windows Mark of the Web Security Feature Bypass Vulnerability
CVE-2024-43501
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2025-21252
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-21282
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-21294
Microsoft Digest Authentication Remote Code Execution Vulnerability
CVE-2025-21296
BranchCache Remote Code Execution Vulnerability
CVE-2025-24044
Use after free in Windows Win32 Kernel Subsystem allows an authorized attacker to elevate privileges locally.
CVE-2025-27477
Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.
CVE-2025-27741
Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.
CVE-2024-38027
Windows Line Printer Daemon Service Denial of Service Vulnerability
CVE-2024-38245
Kernel Streaming Service Driver Elevation of Privilege Vulnerability
CVE-2024-38250
Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2024-43514
Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability
CVE-2025-24056
Heap-based buffer overflow in Windows Telephony Server allows an unauthorized attacker to execute code over a network.
CVE-2025-26679
Use after free in RPC Endpoint Mapper Service allows an authorized attacker to elevate privileges locally.
CVE-2025-29966
Heap-based buffer overflow in Windows Remote Desktop allows an unauthorized attacker to execute code over a network.
CVE-2020-17026
Windows Remote Access Elevation of Privilege Vulnerability
CVE-2021-26878
Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2023-35633
Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-36011
Win32k Elevation of Privilege Vulnerability
CVE-2024-43506
BranchCache Denial of Service Vulnerability
CVE-2024-43511
Windows Kernel Elevation of Privilege Vulnerability
CVE-2024-43556
Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2025-21205
Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.
CVE-2025-26669
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.
CVE-2025-27472
Protection mechanism failure in Windows Mark of the Web (MOTW) allows an unauthorized attacker to bypass a security feature over a network.
CVE-2025-27737
Improper input validation in Windows Security Zone Mapping allows an unauthorized attacker to bypass a security feature locally.
CVE-2021-43223
Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
CVE-2021-43235
Storage Spaces Controller Information Disclosure Vulnerability
CVE-2024-38149
BranchCache Denial of Service Vulnerability
CVE-2024-38256
Windows Kernel-Mode Driver Information Disclosure Vulnerability
CVE-2024-43515
Internet Small Computer Systems Interface (iSCSI) Denial of Service Vulnerability
CVE-2024-43516
Windows Secure Kernel Mode Elevation of Privilege Vulnerability
CVE-2024-43518
Windows Telephony Server Remote Code Execution Vulnerability
CVE-2024-43645
Windows Defender Application Control (WDAC) Security Feature Bypass Vulnerability
CVE-2025-21265
Windows Digital Media Elevation of Privilege Vulnerability