Lucene search

K

1036 matches found

CVE
CVE
added 4 days ago8 views

CVE-2025-53722

Uncontrolled resource consumption in Windows Remote Desktop Services allows an unauthorized attacker to deny service over a network.

7.5CVSS7.1AI score0.01273EPSS
CVE
CVE
added 4 days ago7 views

CVE-2025-49762

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7CVSS7.3AI score0.00038EPSS
CVE
CVE
added 4 days ago7 views

CVE-2025-50153

Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.00045EPSS
CVE
CVE
added 4 days ago7 views

CVE-2025-50155

Access of resource using incompatible type ('type confusion') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score0.00113EPSS
CVE
CVE
added 4 days ago7 views

CVE-2025-50159

Use after free in Remote Access Point-to-Point Protocol (PPP) EAP-TLS allows an authorized attacker to elevate privileges locally.

7.3CVSS7.6AI score0.00059EPSS
CVE
CVE
added 4 days ago7 views

CVE-2025-50161

Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

7.3CVSS7.6AI score0.00078EPSS
CVE
CVE
added 4 days ago7 views

CVE-2025-50167

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Hyper-V allows an authorized attacker to elevate privileges locally.

7CVSS7.2AI score0.00038EPSS
CVE
CVE
added 4 days ago7 views

CVE-2025-50168

Access of resource using incompatible type ('type confusion') in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score0.00149EPSS
CVE
CVE
added 4 days ago7 views

CVE-2025-50170

Improper handling of insufficient permissions or privileges in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score0.00042EPSS
CVE
CVE
added 4 days ago7 views

CVE-2025-50173

Weak authentication in Windows Installer allows an authorized attacker to elevate privileges locally.

7.8CVSS7.3AI score0.00042EPSS
CVE
CVE
added 4 days ago7 views

CVE-2025-53135

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows DirectX allows an authorized attacker to elevate privileges locally.

7CVSS7.2AI score0.00038EPSS
CVE
CVE
added 4 days ago7 views

CVE-2025-53140

Use after free in Kernel Transaction Manager allows an authorized attacker to elevate privileges locally.

7CVSS7.5AI score0.00042EPSS
CVE
CVE
added 4 days ago7 views

CVE-2025-53145

Access of resource using incompatible type ('type confusion') in Windows Message Queuing allows an authorized attacker to execute code over a network.

8.8CVSS7.5AI score0.003EPSS
CVE
CVE
added 4 days ago7 views

CVE-2025-53149

Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.6AI score0.00045EPSS
CVE
CVE
added 4 days ago7 views

CVE-2025-53152

Use after free in Desktop Windows Manager allows an authorized attacker to execute code locally.

7.8CVSS7.9AI score0.00045EPSS
CVE
CVE
added 4 days ago7 views

CVE-2025-53155

Heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to elevate privileges locally.

7.8CVSS7.6AI score0.00045EPSS
CVE
CVE
added 4 days ago7 views

CVE-2025-53721

Use after free in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally.

7CVSS7.5AI score0.00042EPSS
CVE
CVE
added 4 days ago7 views

CVE-2025-53723

Numeric truncation error in Windows Hyper-V allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score0.00113EPSS
CVE
CVE
added 4 days ago7 views

CVE-2025-53724

Access of resource using incompatible type ('type confusion') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score0.00113EPSS
CVE
CVE
added 4 days ago6 views

CVE-2025-49743

Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.

6.7CVSS7.2AI score0.00049EPSS
CVE
CVE
added 4 days ago6 views

CVE-2025-49751

Missing synchronization in Windows Hyper-V allows an authorized attacker to deny service over an adjacent network.

6.8CVSS7.1AI score0.00184EPSS
CVE
CVE
added 4 days ago6 views

CVE-2025-50166

Integer overflow or wraparound in Windows Distributed Transaction Coordinator allows an authorized attacker to disclose information over a network.

6.5CVSS7AI score0.00095EPSS
CVE
CVE
added 4 days ago6 views

CVE-2025-50172

Allocation of resources without limits or throttling in Windows DirectX allows an authorized attacker to deny service over a network.

6.5CVSS7.1AI score0.01701EPSS
CVE
CVE
added 4 days ago6 views

CVE-2025-53134

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7CVSS7.3AI score0.00052EPSS
CVE
CVE
added 4 days ago6 views

CVE-2025-53136

Exposure of sensitive information to an unauthorized actor in Windows NT OS Kernel allows an authorized attacker to disclose information locally.

5.5CVSS6.6AI score0.00053EPSS
CVE
CVE
added 4 days ago6 views

CVE-2025-53137

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7CVSS7.6AI score0.00042EPSS
CVE
CVE
added 4 days ago6 views

CVE-2025-53141

Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score0.00045EPSS
CVE
CVE
added 4 days ago6 views

CVE-2025-53142

Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.

7CVSS7.5AI score0.00042EPSS
CVE
CVE
added 4 days ago6 views

CVE-2025-53144

Access of resource using incompatible type ('type confusion') in Windows Message Queuing allows an authorized attacker to execute code over a network.

8.8CVSS7.5AI score0.003EPSS
CVE
CVE
added 4 days ago6 views

CVE-2025-53147

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7CVSS7.6AI score0.00042EPSS
CVE
CVE
added 4 days ago6 views

CVE-2025-53151

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.00045EPSS
CVE
CVE
added 4 days ago6 views

CVE-2025-53154

Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score0.00045EPSS
CVE
CVE
added 4 days ago6 views

CVE-2025-53716

Null pointer dereference in Windows Local Security Authority Subsystem Service (LSASS) allows an authorized attacker to deny service over a network.

6.5CVSS7AI score0.00135EPSS
CVE
CVE
added 4 days ago6 views

CVE-2025-53718

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7CVSS7.6AI score0.00042EPSS
CVE
CVE
added 4 days ago6 views

CVE-2025-53725

Access of resource using incompatible type ('type confusion') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score0.00113EPSS
CVE
CVE
added 4 days ago6 views

CVE-2025-53726

Access of resource using incompatible type ('type confusion') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score0.00113EPSS
Total number of security vulnerabilities1036