microsoft

15,045 tracked vulnerabilities.

CVE-2024-43627 HIGH
Windows Telephony Service - Remote Code Execution via Heap-based Buffer Overflow
Nov 12, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-43626 HIGH
Windows Telephony Service - Elevation of Privilege via Heap-based Buffer Overflow
Nov 12, 2024
CVSS 7.8
EPSS 0.01
CVE-2024-43625 HIGH
Windows 11 22H2/23H2/24H2 and Windows Server 2022/2022 23H2/2025 - Use-After-Free in VMSwitch
Nov 12, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-43624 HIGH
Windows Hyper-V < - Privilege Escalation
Nov 12, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-43623 HIGH
Windows 10 1507-22H2 and Windows 11 22H2 - Elevation of Privilege via Integer Overflow
Nov 12, 2024
CVSS 7.8
EPSS 0.04
CVE-2024-43622 HIGH
Windows Telephony Service - Remote Code Execution via Heap-based Buffer Overflow
Nov 12, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-43621 HIGH
Windows Telephony Service - Remote Code Execution via Heap-based Buffer Overflow
Nov 12, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-43620 HIGH
Windows 10 1507-22H2 and Windows 11 22H2 - Remote Code Execution via Telephony Service Heap Overflow
Nov 12, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-43602 CRITICAL
Azure CycleCloud 8.0.0-8.6.4 - Remote Code Execution
Nov 12, 2024
CVSS 9.9
EPSS 0.02
CVE-2024-43598 HIGH
LightGBM < 4.6.0 - Remote Code Execution
Nov 12, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-43530 HIGH
Windows 10/11 & Server 2022 Elevation of Privilege via Windows Update Stack
Nov 12, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-43499 HIGH
.NET and Visual Studio - Denial of Service via Highly Compressed Data
Nov 12, 2024
CVSS 7.5
EPSS 0.03
CVE-2024-43498 CRITICAL
.NET and Visual Studio - Remote Code Execution via Type Confusion
Nov 12, 2024
CVSS 9.8
EPSS 0.04
CVE-2024-43462 HIGH
SQL Server 2016, 2017, 2019 - Remote Code Execution via Heap-based Buffer Overflow
Nov 12, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-43459 HIGH
SQL Server 2016-2019 Remote Code Execution via Use-After-Free
Nov 12, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-43452 HIGH
Windows 10/11 Elevation of Privilege via Registry TOCTOU Race Condition
Nov 12, 2024
CVSS 7.5
EPSS 0.24
CVE-2024-43451 MEDIUM KEV
NTLM Hash Disclosure Spoofing - Info Disclosure
Nov 12, 2024
CVSS 6.5
EPSS 0.82
CVE-2024-43450 HIGH
Windows DNS - Spoofing
Nov 12, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-43449 MEDIUM
Windows 10 1507-22H2 and Windows 11 22H2 - Elevation of Privilege via USB Video Class System Driver
Nov 12, 2024
CVSS 6.8
EPSS 0.01
CVE-2024-43447 HIGH
Windows Server 2022 < 10.0.20348.2849 - Remote Code Execution via SMBv3 Server Double Free
Nov 12, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-38264 MEDIUM
Windows 11/Server 2022/2025 DoS in Virtual Hard Disk
Nov 12, 2024
CVSS 5.9
EPSS 0.01
CVE-2024-38255 HIGH
Microsoft SQL Server 2016-2019 Native Client - Remote Code Execution
Nov 12, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-38203 MEDIUM
Windows Package Library Manager - Info Disclosure
Nov 12, 2024
CVSS 6.2
EPSS 0.01
CVE-2024-43577 MEDIUM
Microsoft Edge Chromium < 130.0.2849.46 - Spoofing
Oct 18, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-49023 MEDIUM
Microsoft Edge Chromium < 130.0.2849.46 - Remote Code Execution via Use-After-Free
Oct 18, 2024
CVSS 5.9
EPSS 0.01