microsoft

14,170 tracked vulnerabilities.

CVE-2026-20938 HIGH
Windows VBS Enclave - Privilege Escalation
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-20937 MEDIUM
Windows File Explorer - Info Disclosure
Jan 13, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-20936 MEDIUM
Windows 10/11 NDIS Out-of-bounds Read Vulnerability
Jan 13, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-20935 MEDIUM
Windows VBS Enclave - Info Disclosure
Jan 13, 2026
CVSS 6.2
EPSS 0.00
CVE-2026-20934 HIGH
Windows SMB Server - Privilege Escalation
Jan 13, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-20932 MEDIUM
Windows File Explorer - Info Disclosure
Jan 13, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-20931 HIGH
Windows Telephony Service - Privilege Escalation
Jan 13, 2026
CVSS 8.0
EPSS 0.01
CVE-2026-20929 HIGH
Windows HTTP.sys - Privilege Escalation
Jan 13, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-20927 MEDIUM
Windows SMB Server - Denial of Service via Race Condition
Jan 13, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-20926 HIGH
Windows SMB Server - Privilege Escalation
Jan 13, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-20925 MEDIUM
Windows 10/11, Server 2008/2012/2016 Unauthenticated Spoofing via NTLM File Path Control
Jan 13, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-20924 HIGH
Windows Management Services - Privilege Escalation
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-20923 HIGH
Windows Management Services - Privilege Escalation
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-20922 HIGH
Windows 10 1607-22H2, Windows 11 23H2-25H2, Windows Server 2008-2016 - Authenticated Heap-based Buffer Overflow
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-20921 HIGH
Windows SMB Server - Privilege Escalation
Jan 13, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-20920 HIGH
Windows Win32K - ICOMP < - Privilege Escalation
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-20919 HIGH
Windows SMB Server - Privilege Escalation
Jan 13, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-20918 HIGH
Windows Management Services - Privilege Escalation
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-20877 HIGH
Windows Management Services - Privilege Escalation
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-20876 MEDIUM
Windows VBS Enclave - Privilege Escalation
Jan 13, 2026
CVSS 6.7
EPSS 0.00
CVE-2026-20875 HIGH
Windows 10 1607-22H2 and Windows 11 23H2-25H2 - Unauthenticated Denial of Service via LSASS Null Pointer Dereference
Jan 13, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-20874 HIGH
Windows Management Services - Privilege Escalation
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-20873 HIGH
Windows Management Services - Privilege Escalation
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-20872 MEDIUM
Windows 10/11, Server 2008/2012/2016 Unauthenticated Spoofing via NTLM File Path Control
Jan 13, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-20871 HIGH
Desktop Windows Manager - Privilege Escalation
Jan 13, 2026
CVSS 7.8
EPSS 0.00
Products
windows_server_2016 4,606 windows_server_2019 4,345 windows_server_2012 3,825 windows_server_2008 3,554 windows_10 2,974 windows_server_2022 2,699 windows_7 2,368 windows_8.1 2,216 windows_rt_8.1 2,020 windows_10_1809 1,935 windows_10_21h2 1,934 windows_10_22h2 1,932 windows_server_2022_23h2 1,666 windows_10_1607 1,658 windows_11_22h2 1,651 internet_explorer 1,635 windows_11_23h2 1,548 windows_11_24h2 1,234 windows_10_1507 1,230 windows_server_2025 1,195 office 1,032 windows_11_21h2 1,001 windows_vista 828 edge 756 windows_xp 739 windows_11 573 windows_2000 515 windows_11_25h2 502 sharepoint_server 477 365_apps 472
Quick Filters
Critical CVEs With Exploits In CISA KEV