microsoft

14,170 tracked vulnerabilities.

CVE-2025-21406 HIGH
Windows Telephony Service - Remote Code Execution via Use-After-Free
Feb 11, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-21400 HIGH
Microsoft SharePoint Server - Remote Code Execution
Feb 11, 2025
CVSS 8.0
EPSS 0.02
CVE-2025-21397 HIGH
Microsoft 365 Apps - Remote Code Execution via Use-After-Free
Feb 11, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-21394 HIGH
Microsoft Excel - Remote Code Execution via Use-After-Free
Feb 11, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-21392 HIGH
Microsoft 365 Apps and Office - Remote Code Execution
Feb 11, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-21391 HIGH KEV
Windows 10/11, Server 2016-2019 Elevation of Privilege via Improper Link Resolution
Feb 11, 2025
CVSS 7.1
EPSS 0.05
CVE-2025-21390 HIGH
Microsoft Excel - Remote Code Execution via Heap-based Buffer Overflow
Feb 11, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-21387 HIGH
Microsoft Excel - Remote Code Execution via Use-After-Free
Feb 11, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-21386 HIGH
Microsoft Excel - Remote Code Execution via Use-After-Free
Feb 11, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-21383 HIGH
Microsoft Excel - Information Disclosure via Out-of-bounds Read
Feb 11, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-21381 HIGH
Microsoft Excel - Remote Code Execution via Untrusted Pointer Dereference
Feb 11, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-21379 HIGH
Windows 11 24H2 and Windows Server 2025 < 10.0.26100.3194 - Remote Code Execution via DHCP Client Service Use-After-Free
Feb 11, 2025
CVSS 7.1
EPSS 0.01
CVE-2025-21377 MEDIUM
NTLM Hash Disclosure Spoofing - Info Disclosure
Feb 11, 2025
CVSS 6.5
EPSS 0.04
CVE-2025-21376 HIGH
Windows LDAP - Remote Code Execution via Race Condition
Feb 11, 2025
CVSS 8.1
EPSS 0.01
CVE-2025-21375 HIGH
Windows 10/11, Server 2008 - Elevation of Privilege via Kernel Streaming WOW Thunk Driver
Feb 11, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-21373 HIGH
Windows 10/11, Server 2008 Elevation of Privilege via Windows Installer
Feb 11, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-21371 HIGH
Windows 10 1507-24H2 and Windows Server 2008 - Remote Code Execution via Telephony Service Heap Overflow
Feb 11, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-21369 HIGH
Windows 10/11, Server 2008 - RCE via Digest Auth Integer Overflow
Feb 11, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-21368 HIGH
Windows 10 1507-24H2 and Windows Server 2008 - Remote Code Execution via Digest Authentication
Feb 11, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-21367 HIGH
Windows 10/11, Server 2019/2022/2025 - Elevation of Privilege via Win32 Kernel Use-After-Free
Feb 11, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-21359 HIGH
Windows Kernel - Security Feature Bypass via Improper Access Control
Feb 11, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-21358 HIGH
Windows Core Messaging - Privilege Escalation
Feb 11, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-21352 MEDIUM
Windows 10 1507-24H2 and Windows Server 2008 - Denial of Service in Internet Connection Sharing
Feb 11, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-21351 HIGH
Windows Active Directory Domain Services API - Denial of Service
Feb 11, 2025
CVSS 7.5
EPSS 0.07
CVE-2025-21350 MEDIUM
Windows 10 1507-24H2 and Windows Server 2008 - Denial of Service via Kerberos
Feb 11, 2025
CVSS 5.9
EPSS 0.02
Products
windows_server_2016 4,606 windows_server_2019 4,345 windows_server_2012 3,825 windows_server_2008 3,554 windows_10 2,974 windows_server_2022 2,699 windows_7 2,368 windows_8.1 2,216 windows_rt_8.1 2,020 windows_10_1809 1,935 windows_10_21h2 1,934 windows_10_22h2 1,932 windows_server_2022_23h2 1,666 windows_10_1607 1,658 windows_11_22h2 1,651 internet_explorer 1,635 windows_11_23h2 1,548 windows_11_24h2 1,234 windows_10_1507 1,230 windows_server_2025 1,195 office 1,032 windows_11_21h2 1,001 windows_vista 828 edge 756 windows_xp 739 windows_11 573 windows_2000 515 windows_11_25h2 502 sharepoint_server 477 365_apps 472
Quick Filters
Critical CVEs With Exploits In CISA KEV