microsoft
15,043 tracked vulnerabilities.
CVE-2025-21177
HIGH
Microsoft Dynamics 365 Sales - Server-Side Request Forgery
Feb 06, 2025
CVSS 8.7
EPSS 0.01
CVE-2025-21415
CRITICAL
Azure AI Face Service - Authentication Bypass by Spoofing
Jan 29, 2025
CVSS 9.9
EPSS 0.01
CVE-2025-21396
HIGH
Microsoft Account - Missing Authorization
Jan 29, 2025
CVSS 8.2
EPSS 0.01
CVE-2025-21262
MEDIUM
Microsoft Edge (Chromium-based) - Info Disclosure
Jan 24, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-21399
HIGH
Microsoft Edge Update < 1.3.195.43 - Elevation of Privilege via Untrusted Search Path
Jan 17, 2025
CVSS 7.4
EPSS 0.01
CVE-2025-21185
MEDIUM
Microsoft Edge Chromium < 132.0.2957.115 - Elevation of Privilege
Jan 17, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-21325
HIGH
Windows 10 21H2/22H2, Windows 11 22H2/23H2/24H2, Windows Server 2025 - Elevation of Privilege via Secure Kernel Mode
Jan 17, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-21417
HIGH
Windows Telephony Service - Remote Code Execution via Heap-based Buffer Overflow
Jan 14, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-21413
HIGH
Windows Telephony Service - Remote Code Execution via Heap-based Buffer Overflow
Jan 14, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-21411
HIGH
Windows Telephony Service - Remote Code Execution via Heap-based Buffer Overflow
Jan 14, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-21409
HIGH
Windows Telephony Service - Remote Code Execution via Heap-based Buffer Overflow
Jan 14, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-21405
HIGH
Visual Studio 2022 17.12.0-17.12.4 - Elevation of Privilege
Jan 14, 2025
CVSS 7.3
EPSS 0.01
CVE-2025-21403
MEDIUM
Microsoft On-Premises Data Gateway < 3000.246 - Information Disclosure
Jan 14, 2025
CVSS 6.4
EPSS 0.01
CVE-2025-21402
HIGH
Microsoft Office OneNote - Remote Code Execution
Jan 14, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-21395
HIGH
Microsoft Access - Remote Code Execution via Heap-based Buffer Overflow
Jan 14, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-21393
MEDIUM
Microsoft SharePoint Server - Spoofing
Jan 14, 2025
CVSS 6.3
EPSS 0.01
CVE-2025-21389
HIGH
Windows 10 1507-24H2 and Windows Server 2008-2012 - Unauthenticated Denial of Service via UPnP Device Host
Jan 14, 2025
CVSS 7.5
EPSS 0.02
CVE-2025-21382
HIGH
Windows Graphics Component - Elevation of Privilege via Integer Overflow
Jan 14, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-21378
HIGH
Windows 10 1507-24H2 and Windows Server 2012-2016 - Elevation of Privilege via CSC Service Heap-based Buffer Overflow
Jan 14, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-21374
MEDIUM
Windows 10 1507-24H2 and Windows Server 2012-2016 - Information Disclosure via CSC Service Out-of-bounds Read
Jan 14, 2025
CVSS 5.5
EPSS 0.01
CVE-2025-21372
HIGH
Windows 11 24H2 and Windows Server 2022 23H2 and 2025 - Elevation of Privilege via Brokering File System Use-After-Free
Jan 14, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-21370
HIGH
Windows 11 22H2/23H2/24H2 Elevation of Privilege in Virtualization-Based Security Enclave
Jan 14, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-21366
HIGH
Microsoft Access - Remote Code Execution via Use-After-Free
Jan 14, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-21365
HIGH
Microsoft 365 Apps and Office Long Term Servicing Channel - Remote Code Execution via Untrusted Search Path
Jan 14, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-21364
HIGH
Microsoft 365 Apps - Security Feature Bypass via Excel Deserialization
Jan 14, 2025
CVSS 7.8
EPSS 0.02
Products
windows_server_2016 4,773
windows_server_2019 4,547
windows_server_2012 3,957
windows_server_2008 3,554
windows_10 2,974
windows_server_2022 2,927
windows_7 2,368
windows_8.1 2,216
windows_10_21h2 2,142
windows_10_22h2 2,140
windows_10_1809 2,133
windows_rt_8.1 2,020
windows_10_1607 1,821
windows_server_2022_23h2 1,676
windows_11_23h2 1,669
windows_11_22h2 1,652
internet_explorer 1,635
windows_11_24h2 1,481
windows_server_2025 1,451
windows_10_1507 1,230
Windows 11 Version 24H2 1,087
Windows Server 2025 1,058
Windows Server 2025 (Server Core installation) 1,058
office 1,034
Windows Server 2022 1,014
windows_11_21h2 1,001
Windows Server 2019 1,000
Windows Server 2019 (Server Core installation) 997
Windows 10 Version 21H2 962
Windows 10 Version 22H2 959
Quick Filters