441 matches found
CVE-2025-21215
Secure Boot Security Feature Bypass Vulnerability
CVE-2025-27487
Heap-based buffer overflow in Remote Desktop Client allows an authorized attacker to execute code over a network.
CVE-2025-27491
Use after free in Windows Hyper-V allows an authorized attacker to execute code over a network.
CVE-2025-21317
Windows Kernel Memory Information Disclosure Vulnerability
CVE-2025-21373
Windows Installer Elevation of Privilege Vulnerability
CVE-2025-26635
Weak authentication in Windows Hello allows an authorized attacker to bypass a security feature over a network.
CVE-2025-27478
Heap-based buffer overflow in Windows Local Security Authority (LSA) allows an authorized attacker to elevate privileges locally.
CVE-2025-27727
Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to elevate privileges locally.
CVE-2025-21261
Windows Digital Media Elevation of Privilege Vulnerability
CVE-2025-21285
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
CVE-2025-21372
Microsoft Brokering File System Elevation of Privilege Vulnerability
CVE-2025-21375
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
CVE-2025-21409
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-21200
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-24045
Sensitive data storage in improperly locked memory in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network.
CVE-2025-24061
Protection mechanism failure in Windows Mark of the Web (MOTW) allows an unauthorized attacker to bypass a security feature locally.
CVE-2025-25008
Improper link resolution before file access ('link following') in Microsoft Windows allows an authorized attacker to elevate privileges locally.
CVE-2025-26648
Sensitive data storage in improperly locked memory in Windows Kernel allows an authorized attacker to elevate privileges locally.
CVE-2025-21280
Windows Virtual Trusted Platform Module Denial of Service Vulnerability
CVE-2025-21180
Heap-based buffer overflow in Windows exFAT File System allows an unauthorized attacker to execute code locally.
CVE-2025-21219
MapUrlToZone Security Feature Bypass Vulnerability
CVE-2025-21229
Windows Digital Media Elevation of Privilege Vulnerability
CVE-2025-21232
Windows Digital Media Elevation of Privilege Vulnerability
CVE-2025-24064
Use after free in DNS Server allows an unauthorized attacker to execute code over a network.
CVE-2025-29809
Insecure storage of sensitive information in Windows Kerberos allows an authorized attacker to bypass a security feature locally.
CVE-2025-21225
Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability
CVE-2025-21328
MapUrlToZone Security Feature Bypass Vulnerability
CVE-2025-21358
Windows Core Messaging Elevation of Privileges Vulnerability
CVE-2025-21406
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-21407
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-24060
Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.
CVE-2025-24084
Untrusted pointer dereference in Windows Subsystem for Linux allows an unauthorized attacker to execute code locally.
CVE-2025-27490
Heap-based buffer overflow in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.
CVE-2025-32720
Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
CVE-2025-24055
Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to disclose information with a physical attack.
CVE-2025-24066
Heap-based buffer overflow in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.
CVE-2025-26668
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
CVE-2025-27730
Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.
CVE-2025-21216
Internet Connection Sharing (ICS) Denial of Service Vulnerability
CVE-2025-21221
Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.
CVE-2025-21247
Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network.
CVE-2025-21292
Windows Search Service Elevation of Privilege Vulnerability
CVE-2025-21319
Windows Kernel Memory Information Disclosure Vulnerability
CVE-2025-24992
Buffer over-read in Windows NTFS allows an unauthorized attacker to disclose information locally.
CVE-2025-26672
Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.
CVE-2025-27471
Sensitive data storage in improperly locked memory in Microsoft Streaming Service allows an unauthorized attacker to deny service over a network.
CVE-2025-27473
Uncontrolled resource consumption in Windows HTTP.sys allows an unauthorized attacker to deny service over a network.
CVE-2025-27732
Sensitive data storage in improperly locked memory in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.
CVE-2025-27739
Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally.
CVE-2025-29812
Untrusted pointer dereference in Windows Kernel Memory allows an authorized attacker to elevate privileges locally.