1117 matches found
CVE-2024-30078
Windows Wi-Fi Driver Remote Code Execution Vulnerability
CVE-2025-21333
Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability
CVE-2024-38063
Windows TCP/IP Remote Code Execution Vulnerability
CVE-2025-21298
Windows OLE Remote Code Execution Vulnerability
CVE-2024-38124
Windows Netlogon Elevation of Privilege Vulnerability
CVE-2024-43572
Microsoft Management Console Remote Code Execution Vulnerability
CVE-2025-29824
Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
CVE-2024-21412
Internet Shortcut Files Security Feature Bypass Vulnerability
CVE-2024-21302
Summary:As of July 8, 2025 Microsoft has completed mitigations to address this vulnerability. See KB5042562: Guidance for blocking rollback of virtualization-based security related updates and the Recommended Actions section of this CVE for guidance on how to protect your systems from this vulnerab...
CVE-2024-26256
Libarchive Remote Code Execution Vulnerability
CVE-2024-38203
Windows Package Library Manager Information Disclosure Vulnerability
CVE-2024-38077
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
CVE-2023-36033
Windows DWM Core Library Elevation of Privilege Vulnerability
CVE-2024-49138
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2024-26169
Windows Error Reporting Service Elevation of Privilege Vulnerability
CVE-2024-38014
Windows Installer Elevation of Privilege Vulnerability
CVE-2024-43573
Windows MSHTML Platform Spoofing Vulnerability
CVE-2025-21391
Windows Storage Elevation of Privilege Vulnerability
CVE-2024-21351
Windows SmartScreen Security Feature Bypass Vulnerability
CVE-2024-30088
Windows Kernel Elevation of Privilege Vulnerability
CVE-2024-21429
Windows USB Hub Driver Remote Code Execution Vulnerability
CVE-2024-49039
Windows Task Scheduler Elevation of Privilege Vulnerability
CVE-2025-24071
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network.
CVE-2024-35250
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
CVE-2025-29974
Integer underflow (wrap or wraparound) in Windows Kernel allows an unauthorized attacker to disclose information over an adjacent network.
CVE-2025-30394
Sensitive data storage in improperly locked memory in Remote Desktop Gateway Service allows an unauthorized attacker to deny service over a network.
CVE-2024-43451
NTLM Hash Disclosure Spoofing Vulnerability
CVE-2025-21337
Windows NTFS Elevation of Privilege Vulnerability
CVE-2025-33053
External control of file name or path in Internet Shortcut Files allows an unauthorized attacker to execute code over a network.
CVE-2024-29988
SmartScreen Prompt Security Feature Bypass Vulnerability
CVE-2024-43583
Winlogon Elevation of Privilege Vulnerability
CVE-2024-26161
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2025-21420
Windows Disk Cleanup Tool Elevation of Privilege Vulnerability
CVE-2023-20588
A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.
CVE-2024-30092
Windows Hyper-V Remote Code Execution Vulnerability
CVE-2024-38112
Windows MSHTML Platform Spoofing Vulnerability
CVE-2025-26633
Improper neutralization in Microsoft Management Console allows an unauthorized attacker to bypass a security feature locally.
CVE-2024-49112
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
CVE-2024-43461
Windows MSHTML Platform Spoofing Vulnerability
CVE-2025-21189
MapUrlToZone Security Feature Bypass Vulnerability
CVE-2025-21418
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
CVE-2023-36705
Windows Installer Elevation of Privilege Vulnerability
CVE-2024-30040
Windows MSHTML Platform Security Feature Bypass Vulnerability
CVE-2025-33065
Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
CVE-2023-24023
Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key length, and might lead to discovery of the encryption key and live injection, aka BLUFFS.
CVE-2025-33052
Use of uninitialized resource in Windows DWM Core Library allows an authorized attacker to disclose information locally.
CVE-2025-21335
Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability
CVE-2025-21334
Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability
CVE-2025-24054
External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.
CVE-2024-21408
Windows Hyper-V Denial of Service Vulnerability