microsoft

14,170 tracked vulnerabilities.

CVE-2025-24050 HIGH
Windows 10/11, Server 2016-2025 Privilege Escalation via Heap Overflow
Mar 11, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-24049 HIGH
Azure Command Line Interface < 2.69.0 - Unauthenticated Command Injection
Mar 11, 2025
CVSS 8.4
EPSS 0.00
CVE-2025-24048 HIGH
Windows 10/11, Server 2016-2025 Privilege Escalation via Heap Overflow
Mar 11, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-24046 HIGH
Windows 10 1507-22H2, Windows 11 22H2-24H2, Windows Server 2016-2022 - Use-After-Free in Microsoft Streaming Service
Mar 11, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-24045 HIGH
Windows Remote Desktop Services - Memory Corruption
Mar 11, 2025
CVSS 8.1
EPSS 0.00
CVE-2025-24044 HIGH
Windows 10 1507-22H2, Windows 11 22H2-24H2, Windows Server 2012-2016 - Use-After-Free in Win32 Kernel Subsystem
Mar 11, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-24043 HIGH
Windbg < 1.2502.25002.0 - Remote Code Execution via Cryptographic Signature Verification Bypass
Mar 11, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-24035 HIGH
Windows Remote Desktop Services - Memory Corruption
Mar 11, 2025
CVSS 8.1
EPSS 0.00
CVE-2025-21247 MEDIUM
Windows MapUrlToZone - Path Traversal
Mar 11, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-21199 MEDIUM
Azure Agent < 2.0.9940.0 and < 9.30 - Authenticated Privilege Escalation
Mar 11, 2025
CVSS 6.7
EPSS 0.00
CVE-2025-21180 HIGH
Windows exFAT File System - Heap-based Buffer Overflow
Mar 11, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-26643 MEDIUM
Microsoft Edge (Chromium-based) - CSRF
Mar 07, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-24989 HIGH KEV
Microsoft Power Pages - Unauthenticated Privilege Escalation via Registration Control Bypass
Feb 19, 2025
CVSS 8.2
EPSS 0.32
CVE-2025-21355 HIGH
Microsoft Bing - Unauthenticated Remote Code Execution
Feb 19, 2025
CVSS 8.6
EPSS 0.07
CVE-2025-21401 MEDIUM
Microsoft Edge Chromium < 133.0.3065.69 - Security Feature Bypass via URL Redirection
Feb 15, 2025
CVSS 4.5
EPSS 0.00
CVE-2025-25199 HIGH
go-crypto-winnative - Memory Corruption
Feb 12, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-24042 HIGH
Visual Studio Code < 1.97.1 - Elevation of Privilege via JS Debug Extension
Feb 11, 2025
CVSS 7.3
EPSS 0.00
CVE-2025-24039 HIGH
Visual Studio Code < 1.97.1 - Elevation of Privilege via Uncontrolled Search Path Element
Feb 11, 2025
CVSS 7.3
EPSS 0.00
CVE-2025-24036 HIGH
Microsoft AutoUpdate < 4.77.24121924 - Elevation of Privilege via TOCTOU Race Condition
Feb 11, 2025
CVSS 7.0
EPSS 0.00
CVE-2025-21420 HIGH
Windows Disk Cleanup Tool - Elevation of Privilege via Improper Link Resolution
Feb 11, 2025
CVSS 7.8
EPSS 0.38
CVE-2025-21419 HIGH
Windows 10 1507-24H2 and Windows Server 2008-2012 - Elevation of Privilege via Setup Files Cleanup
Feb 11, 2025
CVSS 7.1
EPSS 0.00
CVE-2025-21418 HIGH KEV
Windows Ancillary Function Driver for WinSock - Elevation of Privilege
Feb 11, 2025
CVSS 7.8
EPSS 0.13
CVE-2025-21414 HIGH
Windows 10 1507-22H2 and Windows 11 22H2-24H2 - Elevation of Privilege via Core Messaging Heap-based Buffer Overflow
Feb 11, 2025
CVSS 7.0
EPSS 0.00
CVE-2025-21410 HIGH
Windows Server RRAS Remote Code Execution (2008, 2012, 2016, 2019, 2022, 2025)
Feb 11, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-21407 HIGH
Windows Telephony Service - Remote Code Execution via Heap-based Buffer Overflow
Feb 11, 2025
CVSS 8.8
EPSS 0.00
Products
windows_server_2016 4,606 windows_server_2019 4,345 windows_server_2012 3,825 windows_server_2008 3,554 windows_10 2,974 windows_server_2022 2,699 windows_7 2,368 windows_8.1 2,216 windows_rt_8.1 2,020 windows_10_1809 1,935 windows_10_21h2 1,934 windows_10_22h2 1,932 windows_server_2022_23h2 1,666 windows_10_1607 1,658 windows_11_22h2 1,651 internet_explorer 1,635 windows_11_23h2 1,548 windows_11_24h2 1,234 windows_10_1507 1,230 windows_server_2025 1,195 office 1,032 windows_11_21h2 1,001 windows_vista 828 edge 756 windows_xp 739 windows_11 573 windows_2000 515 windows_11_25h2 502 sharepoint_server 477 365_apps 472
Quick Filters
Critical CVEs With Exploits In CISA KEV