microsoft

14,170 tracked vulnerabilities.

CVE-2025-59516 HIGH
Windows Storage VSP Driver - Privilege Escalation
Dec 09, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-55233 HIGH
Windows Projected File System - Privilege Escalation
Dec 09, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-54100 HIGH
Windows PowerShell - Unauthenticated Command Injection
Dec 09, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-62223 MEDIUM
Microsoft Edge for iOS - Info Disclosure
Dec 05, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-64657 CRITICAL
Azure Application Gateway - Stack-based Buffer Overflow
Nov 26, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-64656 CRITICAL
Azure Application Gateway - Unauthenticated Out-of-bounds Read
Nov 26, 2025
CVSS 9.4
EPSS 0.00
CVE-2025-64660 HIGH
Visual Studio Code < 1.106.2 - Authenticated Remote Code Execution
Nov 20, 2025
CVSS 8.0
EPSS 0.00
CVE-2025-64655 HIGH
Dynamics OmniChannel SDK Storage Containers - Improper Authorization
Nov 20, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-62459 HIGH
Microsoft 365 Defender Portal - Spoofing
Nov 20, 2025
CVSS 8.3
EPSS 0.00
CVE-2025-62207 HIGH
Azure Monitor - Server-Side Request Forgery
Nov 20, 2025
CVSS 8.6
EPSS 0.00
CVE-2025-59245 CRITICAL
Microsoft SharePoint Online - Elevation of Privilege via Deserialization of Untrusted Data
Nov 20, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-49752 CRITICAL
Azure Bastion - Privilege Escalation
Nov 20, 2025
CVSS 10.0
EPSS 0.00
CVE-2025-62453 MEDIUM
GitHub Copilot & VSCode - Info Disclosure
Nov 11, 2025
CVSS 5.0
EPSS 0.00
CVE-2025-62452 HIGH
Windows RRAS - Authenticated Remote Code Execution via Heap-based Buffer Overflow
Nov 11, 2025
CVSS 8.0
EPSS 0.00
CVE-2025-62449 MEDIUM
GitHub Copilot Chat < 0.32.0 - Path Traversal
Nov 11, 2025
CVSS 6.8
EPSS 0.00
CVE-2025-62222 HIGH
GitHub Copilot Chat < 0.32.5 - Remote Code Execution via Command Injection
Nov 11, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-62220 HIGH
Windows Subsystem for Linux < 2.6.2 - Remote Code Execution via Heap-based Buffer Overflow
Nov 11, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-62219 HIGH
Windows 10 1607-22H2 and Windows 11 23H2-25H2 - Authenticated Privilege Escalation via Double Free
Nov 11, 2025
CVSS 7.0
EPSS 0.00
CVE-2025-62218 HIGH
Microsoft Windows 10 1607-22H2 & Windows 11 23H2-25H2 Privilege Escalation via WPS Race Condition
Nov 11, 2025
CVSS 7.0
EPSS 0.00
CVE-2025-62217 HIGH
Windows 10/11, Server 2008-2016 Privilege Escalation via AFD Race Condition
Nov 11, 2025
CVSS 7.0
EPSS 0.00
CVE-2025-62216 HIGH
Microsoft 365 Apps - Use-After-Free
Nov 11, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-62215 HIGH KEV
Windows Kernel - Use-After-Free via Race Condition
Nov 11, 2025
CVSS 7.0
EPSS 0.02
CVE-2025-62214 MEDIUM
Visual Studio 2022 17.14.0-17.14.16 - Authenticated Command Injection
Nov 11, 2025
CVSS 6.7
EPSS 0.00
CVE-2025-62213 HIGH
Windows 10 1607-22H2, Windows 11 23H2-25H2, Windows Server 2008-2016 - Privilege Escalation via Use-After-Free in AFD
Nov 11, 2025
CVSS 7.0
EPSS 0.00
CVE-2025-62211 HIGH
Dynamics 365 Field Service < 8.8.139.398 - Cross-Site Scripting
Nov 11, 2025
CVSS 8.7
EPSS 0.00
Products
windows_server_2016 4,606 windows_server_2019 4,345 windows_server_2012 3,825 windows_server_2008 3,554 windows_10 2,974 windows_server_2022 2,699 windows_7 2,368 windows_8.1 2,216 windows_rt_8.1 2,020 windows_10_1809 1,935 windows_10_21h2 1,934 windows_10_22h2 1,932 windows_server_2022_23h2 1,666 windows_10_1607 1,658 windows_11_22h2 1,651 internet_explorer 1,635 windows_11_23h2 1,548 windows_11_24h2 1,234 windows_10_1507 1,230 windows_server_2025 1,195 office 1,032 windows_11_21h2 1,001 windows_vista 828 edge 756 windows_xp 739 windows_11 573 windows_2000 515 windows_11_25h2 502 sharepoint_server 477 365_apps 472
Quick Filters
Critical CVEs With Exploits In CISA KEV