microsoft

14,170 tracked vulnerabilities.

CVE-2025-32712 HIGH
Windows 10 1507-24H2 and Windows Server 2008 - Use-After-Free in Win32K GRFX
Jun 10, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-32710 HIGH
Windows Server RCE via Use-After-Free in Remote Desktop Services
Jun 10, 2025
CVSS 8.1
EPSS 0.01
CVE-2025-29828 HIGH
Windows 11/Server 2022/2025 RCE via Use-After-Free in Cryptographic Services
Jun 10, 2025
CVSS 8.1
EPSS 0.01
CVE-2025-24069 MEDIUM
Windows 10/11, Server 2016-2019 Authenticated Info Disclosure via OOB Read
Jun 10, 2025
CVSS 5.5
EPSS 0.01
CVE-2025-24068 MEDIUM
Windows 10/11, Server 2016-2019 Authenticated Info Disclosure via Buffer Over-read
Jun 10, 2025
CVSS 5.5
EPSS 0.01
CVE-2025-24065 MEDIUM
Windows Storage Management Provider - Out-of-bounds Read
Jun 10, 2025
CVSS 5.5
EPSS 0.01
CVE-2025-47966 CRITICAL
Power Automate for Desktop - Exposure of Sensitive Information to an Unauthorized Actor
Jun 05, 2025
CVSS 9.8
EPSS 0.05
CVE-2025-47827 MEDIUM KEV
IGEL OS < 11 - Secure Boot Bypass via Improper Cryptographic Signature Verification
Jun 05, 2025
CVSS 4.6
EPSS 0.01
CVE-2025-5419 HIGH KEV
Google Chrome < 137.0.7151.68 - Out-of-bounds Read and Write in V8
Jun 03, 2025
CVSS 8.8
EPSS 0.04
CVE-2025-47181 HIGH
Microsoft Edge Update < 1.3.195.61 - Authenticated Privilege Escalation via Improper Link Resolution
May 22, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-47161 HIGH
Microsoft Defender for Endpoint < 101.25022.0002 - Privilege Escalation
May 15, 2025
CVSS 7.8
EPSS 0.04
CVE-2025-26646 HIGH
Microsoft .NET, Visual Studio, and Build Tools - Path Spoofing via External Control of File Name or Path
May 13, 2025
CVSS 8.0
EPSS 0.00
CVE-2025-32709 HIGH KEV
Windows 10/11, Server 2008-2016 - Privilege Escalation via AFD Null Pointer Dereference
May 13, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-32707 HIGH
Windows 10/Server 2008-2019 Unauthenticated Privilege Escalation via NTFS OOB Read
May 13, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-32706 HIGH KEV
Windows Common Log File System Driver - Authenticated Privilege Escalation via Improper Input Validation
May 13, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-32705 HIGH
Microsoft 365 Apps and Office Long Term Servicing Channel - Out-of-bounds Read
May 13, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-32704 HIGH
Microsoft Excel - Out-of-bounds Read
May 13, 2025
CVSS 8.4
EPSS 0.01
CVE-2025-32703 MEDIUM
Visual Studio 2017, 2019, 2022 - Information Disclosure via Insufficient Access Control
May 13, 2025
CVSS 5.5
EPSS 0.01
CVE-2025-32702 HIGH
Visual Studio 16.0-16.11.46 and 17.8.0-17.8.20 - Unauthenticated Command Injection
May 13, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-32701 HIGH KEV
Windows Common Log File System Driver - Authenticated Use-After-Free
May 13, 2025
CVSS 7.8
EPSS 0.02
CVE-2025-30400 HIGH KEV
Windows 10/11, Server 2019/2022/2025 - Use-After-Free in DWM
May 13, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-30397 HIGH KEV
Microsoft Windows Scripting Engine - Remote Code Execution via Type Confusion
May 13, 2025
CVSS 7.5
EPSS 0.21
CVE-2025-30394 MEDIUM
Remote Desktop Gateway Service - DoS
May 13, 2025
CVSS 5.9
EPSS 0.01
CVE-2025-30393 HIGH
Microsoft Office Excel - Use After Free
May 13, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-30388 HIGH
Microsoft Windows Win32K - GRFX Heap-based Buffer Overflow
May 13, 2025
CVSS 7.8
EPSS 0.01
Products
windows_server_2016 4,606 windows_server_2019 4,345 windows_server_2012 3,825 windows_server_2008 3,554 windows_10 2,974 windows_server_2022 2,699 windows_7 2,368 windows_8.1 2,216 windows_rt_8.1 2,020 windows_10_1809 1,935 windows_10_21h2 1,934 windows_10_22h2 1,932 windows_server_2022_23h2 1,666 windows_10_1607 1,658 windows_11_22h2 1,651 internet_explorer 1,635 windows_11_23h2 1,548 windows_11_24h2 1,234 windows_10_1507 1,230 windows_server_2025 1,195 office 1,032 windows_11_21h2 1,001 windows_vista 828 edge 756 windows_xp 739 windows_11 573 windows_2000 515 windows_11_25h2 502 sharepoint_server 477 365_apps 472
Quick Filters
Critical CVEs With Exploits In CISA KEV