microsoft

14,170 tracked vulnerabilities.

CVE-2026-26152 HIGH
Microsoft Cryptographic Services Elevation of Privilege Vulnerability
Apr 14, 2026
CVSS 7.0
EPSS 0.00
CVE-2026-26151 HIGH
Remote Desktop Spoofing Vulnerability
Apr 14, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-26149 CRITICAL
Microsoft Power Apps Security Feature Bypass
Apr 14, 2026
CVSS 9.0
EPSS 0.00
CVE-2026-26143 HIGH
Microsoft PowerShell Security Feature Bypass Vulnerability
Apr 14, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-25184 HIGH
Applocker Filter Driver (applockerfltr.sys) Elevation of Privilege Vulnerability
Apr 14, 2026
CVSS 7.0
EPSS 0.00
CVE-2026-23670 MEDIUM
Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability
Apr 14, 2026
CVSS 5.7
EPSS 0.00
CVE-2026-23666 HIGH
Microsoft .NET Framework - Input Validation Denial of Service
Apr 14, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-23657 HIGH
Microsoft Word Remote Code Execution Vulnerability
Apr 14, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-23653 MEDIUM
GitHub Copilot and Visual Studio Code Information Disclosure Vulnerability
Apr 14, 2026
CVSS 5.7
EPSS 0.00
CVE-2026-20945 MEDIUM
Microsoft SharePoint Server Spoofing Vulnerability
Apr 14, 2026
CVSS 4.6
EPSS 0.00
CVE-2026-20930 HIGH
Windows Management Services Elevation of Privilege Vulnerability
Apr 14, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-20928 MEDIUM
Windows Recovery Environment Security Feature Bypass Vulnerability
Apr 14, 2026
CVSS 4.6
EPSS 0.00
CVE-2026-20806 MEDIUM
Windows COM Server Information Disclosure Vulnerability
Apr 14, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-0390 MEDIUM
UEFI Secure Boot Security Feature Bypass Vulnerability
Apr 14, 2026
CVSS 6.7
EPSS 0.00
CVE-2026-33119 MEDIUM
Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability
Apr 10, 2026
CVSS 5.4
EPSS 0.00
CVE-2026-33118 MEDIUM
Microsoft Edge (Chromium-based) Spoofing Vulnerability
Apr 10, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-35199 MEDIUM
SymCrypt SymCryptXmssSign function - Heap overflow via 64->32-bit leaf-count truncation
Apr 06, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-32186 CRITICAL
Microsoft Bing Elevation of Privilege Vulnerability
Apr 03, 2026
CVSS 10.0
EPSS 0.00
CVE-2026-33107 CRITICAL
Azure Databricks Elevation of Privilege Vulnerability
Apr 03, 2026
CVSS 10.0
EPSS 0.00
CVE-2026-33105 CRITICAL
Microsoft Azure Kubernetes Service Elevation of Privilege Vulnerability
Apr 03, 2026
CVSS 10.0
EPSS 0.00
CVE-2026-32213 CRITICAL
Azure AI Foundry Elevation of Privilege Vulnerability
Apr 03, 2026
CVSS 10.0
EPSS 0.00
CVE-2026-32211 CRITICAL
Azure MCP Server Information Disclosure Vulnerability
Apr 03, 2026
CVSS 9.1
EPSS 0.00
CVE-2026-32173 HIGH
Azure SRE Agent Information Disclosure Vulnerability
Apr 03, 2026
CVSS 8.6
EPSS 0.00
CVE-2026-26135 CRITICAL
Azure Custom Locations Resource Provider (RP) Elevation of Privilege Vulnerability
Apr 03, 2026
CVSS 9.6
EPSS 0.00
CVE-2026-34401 MEDIUM
XML Notepad: XML External Entity (XXE) Injection via Unsafe XmlTextReader in XML Diff and Schema Loading
Mar 31, 2026
CVSS 6.5
EPSS 0.00
Products
windows_server_2016 4,606 windows_server_2019 4,345 windows_server_2012 3,825 windows_server_2008 3,554 windows_10 2,974 windows_server_2022 2,699 windows_7 2,368 windows_8.1 2,216 windows_rt_8.1 2,020 windows_10_1809 1,935 windows_10_21h2 1,934 windows_10_22h2 1,932 windows_server_2022_23h2 1,666 windows_10_1607 1,658 windows_11_22h2 1,651 internet_explorer 1,635 windows_11_23h2 1,548 windows_11_24h2 1,234 windows_10_1507 1,230 windows_server_2025 1,195 office 1,032 windows_11_21h2 1,001 windows_vista 828 edge 756 windows_xp 739 windows_11 573 windows_2000 515 windows_11_25h2 502 sharepoint_server 477 365_apps 472
Quick Filters
Critical CVEs With Exploits In CISA KEV