Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
MicrosoftWindows Server 2025

549 matches found

CVE
CVEadded 2013/12/11 12:55 a.m.3070 views

CVE-2013-3900

Why is Microsoft republishing a CVE from 2013?We are republishing CVE-2013-3900 in the Security Update Guide to update the Security Updates table and to inform customers that the EnableCertPaddingCheck is available in all currently supported versions of Windows 10 and Windows 11. While the format i...

8.8CVSS7.4AI score0.72892EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.914 views

CVE-2025-21333

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.56696EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.840 views

CVE-2025-21298

Windows OLE Remote Code Execution Vulnerability

9.8CVSS9.8AI score0.70558EPSS
CVE
CVEadded 2023/05/09 6:15 p.m.596 views

CVE-2023-24932

Secure Boot Security Feature Bypass Vulnerability

6.7CVSS6.9AI score0.00536EPSS
CVE
CVEadded 2025/04/08 6:16 p.m.547 views

CVE-2025-29824

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.02117EPSS
CVE
CVEadded 2024/11/12 6:15 p.m.492 views

CVE-2024-38203

Windows Package Library Manager Information Disclosure Vulnerability

6.2CVSS5.8AI score0.00125EPSS
CVE
CVEadded 2024/12/12 2:4 a.m.435 views

CVE-2024-49138

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS7.5AI score0.8442EPSS
CVE
CVEadded 2025/02/11 6:15 p.m.418 views

CVE-2025-21391

Windows Storage Elevation of Privilege Vulnerability

7.1CVSS7.7AI score0.04197EPSS
CVE
CVEadded 2025/05/13 5:15 p.m.362 views

CVE-2025-29974

Integer underflow (wrap or wraparound) in Windows Kernel allows an unauthorized attacker to disclose information over an adjacent network.

5.7CVSS5.6AI score0.00087EPSS
CVE
CVEadded 2024/11/12 6:15 p.m.359 views

CVE-2024-49039

Windows Task Scheduler Elevation of Privilege Vulnerability

8.8CVSS8.6AI score0.37414EPSS
CVE
CVEadded 2025/05/13 5:16 p.m.355 views

CVE-2025-30394

Sensitive data storage in improperly locked memory in Remote Desktop Gateway Service allows an unauthorized attacker to deny service over a network.

5.9CVSS5.7AI score0.00074EPSS
CVE
CVEadded 2025/02/11 6:15 p.m.350 views

CVE-2025-21337

Windows NTFS Elevation of Privilege Vulnerability

3.3CVSS6AI score0.0006EPSS
CVE
CVEadded 2024/10/08 6:15 p.m.339 views

CVE-2024-43583

Winlogon Elevation of Privilege Vulnerability

7.8CVSS8.4AI score0.07813EPSS
CVE
CVEadded 2025/03/11 5:16 p.m.336 views

CVE-2025-24071

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network.

6.5CVSS7.3AI score0.6231EPSS
CVE
CVEadded 2024/12/12 2:4 a.m.319 views

CVE-2024-49112

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.87124EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.318 views

CVE-2025-21189

MapUrlToZone Security Feature Bypass Vulnerability

4.3CVSS4.6AI score0.00162EPSS
CVE
CVEadded 2025/02/11 6:15 p.m.317 views

CVE-2025-21420

Windows Disk Cleanup Tool Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.31526EPSS
CVE
CVEadded 2024/11/12 6:15 p.m.310 views

CVE-2024-43451

NTLM Hash Disclosure Spoofing Vulnerability

6.5CVSS6.5AI score0.89087EPSS
CVE
CVEadded 2025/06/10 5:22 p.m.299 views

CVE-2025-33065

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00048EPSS
CVE
CVEadded 2025/06/10 5:22 p.m.296 views

CVE-2025-33052

Use of uninitialized resource in Windows DWM Core Library allows an authorized attacker to disclose information locally.

5.5CVSS5.3AI score0.00124EPSS
CVE
CVEadded 2025/02/11 6:15 p.m.275 views

CVE-2025-21418

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

7.8CVSS8.2AI score0.11464EPSS
CVE
CVEadded 2025/03/11 5:16 p.m.274 views

CVE-2025-26633

Improper neutralization in Microsoft Management Console allows an unauthorized attacker to bypass a security feature locally.

7CVSS6.8AI score0.07394EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.264 views

CVE-2025-21335

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.05766EPSS
CVE
CVEadded 2025/06/10 5:22 p.m.264 views

CVE-2025-33053

External control of file name or path in Internet Shortcut Files allows an unauthorized attacker to execute code over a network.

8.8CVSS8.8AI score0.17938EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.263 views

CVE-2025-21334

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.04579EPSS
CVE
CVEadded 2025/03/11 5:16 p.m.234 views

CVE-2025-24054

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.

6.5CVSS6.5AI score0.38746EPSS
CVE
CVEadded 2025/02/11 6:15 p.m.233 views

CVE-2025-21181

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

7.5CVSS7.8AI score0.05747EPSS
CVE
CVEadded 2025/01/14 6:16 p.m.224 views

CVE-2025-21413

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.02401EPSS
CVE
CVEadded 2025/03/11 5:16 p.m.224 views

CVE-2025-24985

Integer overflow or wraparound in Windows Fast FAT Driver allows an unauthorized attacker to execute code locally.

7.8CVSS7.8AI score0.00925EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.222 views

CVE-2025-21230

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

7.5CVSS7.4AI score0.01541EPSS
CVE
CVEadded 2025/03/11 5:16 p.m.213 views

CVE-2025-24993

Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally.

7.8CVSS8AI score0.03226EPSS
CVE
CVEadded 2024/12/12 2:4 a.m.212 views

CVE-2024-49113

Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability

7.5CVSS7.5AI score0.87357EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.210 views

CVE-2025-21293

Active Directory Domain Services Elevation of Privilege Vulnerability

8.8CVSS8.8AI score0.77433EPSS
CVE
CVEadded 2025/03/11 5:16 p.m.209 views

CVE-2025-24984

Insertion of sensitive information into log file in Windows NTFS allows an unauthorized attacker to disclose information with a physical attack.

4.6CVSS6.1AI score0.19409EPSS
CVE
CVEadded 2025/03/11 5:16 p.m.209 views

CVE-2025-24991

Out-of-bounds read in Windows NTFS allows an authorized attacker to disclose information locally.

5.5CVSS6.5AI score0.03535EPSS
CVE
CVEadded 2025/06/10 5:23 p.m.206 views

CVE-2025-33073

Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network.

8.8CVSS8.7AI score0.00326EPSS
CVE
CVEadded 2024/11/12 6:15 p.m.197 views

CVE-2024-43639

Windows KDC Proxy Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.07529EPSS
CVE
CVEadded 2025/02/11 6:15 p.m.187 views

CVE-2025-21179

DHCP Client Service Denial of Service Vulnerability

4.8CVSS5.9AI score0.00093EPSS
CVE
CVEadded 2024/12/12 2:4 a.m.186 views

CVE-2024-49084

Windows Kernel Elevation of Privilege Vulnerability

7CVSS6.9AI score0.00079EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.174 views

CVE-2025-21302

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00461EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.173 views

CVE-2025-21263

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00132EPSS
CVE
CVEadded 2025/05/13 5:16 p.m.163 views

CVE-2025-30397

Access of resource using incompatible type ('type confusion') in Microsoft Scripting Engine allows an unauthorized attacker to execute code over a network.

7.5CVSS7.5AI score0.20545EPSS
CVE
CVEadded 2025/02/11 6:15 p.m.162 views

CVE-2025-21351

Windows Active Directory Domain Services API Denial of Service Vulnerability

7.5CVSS7.9AI score0.04475EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.159 views

CVE-2025-21341

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00132EPSS
CVE
CVEadded 2025/05/13 5:16 p.m.159 views

CVE-2025-30400

Use after free in Windows DWM allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.0426EPSS
CVE
CVEadded 2024/12/12 2:4 a.m.158 views

CVE-2024-49082

Windows File Explorer Information Disclosure Vulnerability

6.8CVSS6.4AI score0.0011EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.154 views

CVE-2025-21327

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00132EPSS
CVE
CVEadded 2025/05/13 5:16 p.m.151 views

CVE-2025-32709

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7.8CVSS8AI score0.04268EPSS
CVE
CVEadded 2025/03/11 5:16 p.m.150 views

CVE-2025-24076

Improper access control in Windows Cross Device Service allows an authorized attacker to elevate privileges locally.

7.3CVSS7.2AI score0.02762EPSS
CVE
CVEadded 2024/11/12 6:15 p.m.148 views

CVE-2024-43625

Microsoft Windows VMSwitch Elevation of Privilege Vulnerability

8.1CVSS7.9AI score0.00126EPSS
Total number of security vulnerabilities549