microsoft
15,023 tracked vulnerabilities.
CVE-2025-55244
CRITICAL
Azure Bot Service - Privilege Escalation
Sep 04, 2025
CVSS 9.0
EPSS 0.01
CVE-2025-55242
MEDIUM
Xbox Gaming Services - Exposure of Sensitive Information to an Unauthorized Actor
Sep 04, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-55241
CRITICAL
Azure Entra ID < - Privilege Escalation
Sep 04, 2025
CVSS 10.0
EPSS 0.02
CVE-2025-55238
HIGH
Dynamics 365 FastTrack Implementation Assets - Info Disclosure
Sep 04, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-54914
CRITICAL
Azure Networking - Improper Access Control
Sep 04, 2025
CVSS 10.0
EPSS 0.02
CVE-2025-9491
HIGH
Windows 11 23H2 - Remote Code Execution via LNK File UI Misrepresentation
Aug 26, 2025
CVSS 7.8
EPSS 0.63
CVE-2025-55231
HIGH
Windows Server 2012-2025 Unauthenticated RCE via Race Condition in Storage
Aug 21, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-55230
HIGH
Windows MBT Transport < - Privilege Escalation
Aug 21, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-55229
MEDIUM
Windows Certificates - Info Disclosure
Aug 21, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-53795
CRITICAL
Microsoft PC Manager - Privilege Escalation
Aug 21, 2025
CVSS 9.1
EPSS 0.01
CVE-2025-53763
CRITICAL
Azure Databricks - Privilege Escalation
Aug 21, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-54364
MEDIUM
Microsoft Knack 0.12.0 - Regular Expression Denial of Service in option_descriptions
Aug 20, 2025
EPSS 0.00
CVE-2025-54363
MEDIUM
Microsoft Knack 0.12.0 - Denial of Service via Inefficient Regular Expression in knack.introspection
Aug 20, 2025
EPSS 0.00
CVE-2025-53793
HIGH
Azure Stack Hub 1.2406.0.8-1.2406.1.23 - Unauthenticated Information Disclosure
Aug 12, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-53789
HIGH
Windows StateRepository API - Privilege Escalation
Aug 12, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-53788
HIGH
Windows Subsystem for Linux - Privilege Escalation
Aug 12, 2025
CVSS 7.0
EPSS 0.00
CVE-2025-53784
HIGH
Microsoft Office Word - Use After Free
Aug 12, 2025
CVSS 8.4
EPSS 0.00
CVE-2025-53783
HIGH
Microsoft Teams - Remote Code Execution via Heap-based Buffer Overflow
Aug 12, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-53781
HIGH
Azure Virtual Machines - Info Disclosure
Aug 12, 2025
CVSS 7.7
EPSS 0.01
CVE-2025-53779
HIGH
Windows Kerberos - Privilege Escalation
Aug 12, 2025
CVSS 7.2
EPSS 0.03
CVE-2025-53778
HIGH
Windows NTLM - Privilege Escalation
Aug 12, 2025
CVSS 8.8
EPSS 0.38
CVE-2025-53773
HIGH
GitHub Copilot & VS - Command Injection
Aug 12, 2025
CVSS 7.8
EPSS 0.03
CVE-2025-53772
HIGH
Web Deploy 4.0 < 10.0.2001 - Authenticated Remote Code Execution via Untrusted Data Deserialization
Aug 12, 2025
CVSS 8.8
EPSS 0.22
CVE-2025-53769
MEDIUM
Windows Security App - Path Traversal
Aug 12, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-53766
CRITICAL
Microsoft Office < 16.0.14326.22618 and < 16.0.19127.20000 - Remote Code Execution via GDI+ Heap Overflow
Aug 12, 2025
CVSS 9.8
EPSS 0.07
Products
windows_server_2016 4,690
windows_server_2019 4,443
windows_server_2012 3,894
windows_server_2008 3,554
windows_10 2,974
windows_server_2022 2,818
windows_7 2,368
windows_8.1 2,216
windows_10_21h2 2,035
windows_10_22h2 2,033
windows_10_1809 2,029
windows_rt_8.1 2,020
windows_10_1607 1,739
windows_server_2022_23h2 1,676
windows_11_23h2 1,657
windows_11_22h2 1,652
internet_explorer 1,635
windows_11_24h2 1,354
windows_server_2025 1,320
windows_10_1507 1,230
Windows 11 Version 24H2 1,086
Windows Server 2025 1,058
Windows Server 2025 (Server Core installation) 1,058
office 1,034
Windows Server 2022 1,014
windows_11_21h2 1,001
Windows Server 2019 1,000
Windows Server 2019 (Server Core installation) 997
Windows 10 Version 21H2 961
Windows 10 Version 22H2 958
Quick Filters