microsoft
15,039 tracked vulnerabilities.
CVE-2025-49736
MEDIUM
Microsoft Edge < 139.0.3405.86 - Spoofing via UI Action Misinterpretation
Aug 12, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-49712
HIGH
Microsoft SharePoint Server - Remote Code Execution via Untrusted Data Deserialization
Aug 12, 2025
CVSS 8.8
EPSS 0.18
CVE-2025-49707
HIGH
Azure Virtual Machines - Authenticated Spoofing via Improper Access Control
Aug 12, 2025
CVSS 7.9
EPSS 0.00
CVE-2025-48807
MEDIUM
Windows 10 1607-22H2, Windows 11 22H2-24H2, Windows Server 2016-2025 - Authenticated Remote Code Execution
Aug 12, 2025
CVSS 6.7
EPSS 0.00
CVE-2025-47954
HIGH
SQL Server 2022 16.0.1000.6-16.0.1145.1 - Authenticated SQL Injection
Aug 12, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-33051
HIGH
Microsoft Exchange Server - Info Disclosure
Aug 12, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-25007
MEDIUM
Microsoft Exchange Server - Info Disclosure
Aug 12, 2025
CVSS 5.3
EPSS 0.01
CVE-2025-25006
MEDIUM
Microsoft Exchange Server - Spoofing
Aug 12, 2025
CVSS 5.3
EPSS 0.01
CVE-2025-25005
MEDIUM
Microsoft Exchange Server - Info Disclosure
Aug 12, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-24999
HIGH
Microsoft SQL Server 2016-2022 Privilege Escalation via Improper Access Control
Aug 12, 2025
CVSS 8.8
EPSS 0.02
CVE-2025-53792
CRITICAL
Azure Portal - Privilege Escalation
Aug 07, 2025
CVSS 9.1
EPSS 0.01
CVE-2025-53787
HIGH
Microsoft 365 Copilot BizChat - Info Disclosure
Aug 07, 2025
CVSS 8.2
EPSS 0.01
CVE-2025-53774
MEDIUM
Microsoft 365 Copilot - Info Disclosure
Aug 07, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-53767
CRITICAL
Azure OpenAI - Privilege Escalation
Aug 07, 2025
CVSS 10.0
EPSS 0.01
CVE-2025-53786
HIGH
Microsoft Exchange Server - Info Disclosure
Aug 06, 2025
CVSS 8.0
EPSS 0.07
CVE-2025-53771
MEDIUM
NUCLEI
Microsoft SharePoint Server ToolPane Unauthenticated Remote Code Execution (aka ToolShell)
Jul 20, 2025
CVSS 6.5
EPSS 1.00
CVE-2025-53770
CRITICAL
KEVNUCLEI
Microsoft SharePoint Server - Code Injection
Jul 20, 2025
CVSS 9.8
EPSS 1.00
CVE-2025-53762
HIGH
Microsoft Purview - Privilege Escalation
Jul 18, 2025
CVSS 8.7
EPSS 0.01
CVE-2025-49747
CRITICAL
Azure Machine Learning - Missing Authorization
Jul 18, 2025
CVSS 9.9
EPSS 0.01
CVE-2025-49746
CRITICAL
Azure Machine Learning - Privilege Escalation via Improper Authorization
Jul 18, 2025
CVSS 9.9
EPSS 0.01
CVE-2025-47995
MEDIUM
Azure Machine Learning - Privilege Escalation
Jul 18, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-47158
CRITICAL
Azure DevOps - Unauthenticated Privilege Escalation via Assumed-Immutable Data
Jul 18, 2025
CVSS 9.0
EPSS 0.01
CVE-2025-47964
MEDIUM
Microsoft Edge Chromium < 138.0.3351.55 - Spoofing
Jul 11, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-47963
MEDIUM
Microsoft Edge Chromium < 138.0.3351.55 - Spoofing via UI Misrepresentation
Jul 11, 2025
CVSS 6.3
EPSS 0.01
CVE-2025-47182
MEDIUM
Microsoft Edge Chromium < 138.0.3351.55 - Authenticated Security Feature Bypass via Improper Input Validation
Jul 11, 2025
CVSS 5.6
EPSS 0.00
Products
windows_server_2016 4,728
windows_server_2019 4,490
windows_server_2012 3,920
windows_server_2008 3,554
windows_10 2,974
windows_server_2022 2,868
windows_7 2,368
windows_8.1 2,216
windows_10_21h2 2,086
windows_10_22h2 2,084
windows_10_1809 2,076
windows_rt_8.1 2,020
windows_10_1607 1,777
windows_server_2022_23h2 1,676
windows_11_23h2 1,661
windows_11_22h2 1,652
internet_explorer 1,635
windows_11_24h2 1,418
windows_server_2025 1,384
windows_10_1507 1,230
Windows 11 Version 24H2 1,086
Windows Server 2025 1,058
Windows Server 2025 (Server Core installation) 1,058
office 1,034
Windows Server 2022 1,014
windows_11_21h2 1,001
Windows Server 2019 1,000
Windows Server 2019 (Server Core installation) 997
Windows 10 Version 21H2 961
Windows 10 Version 22H2 958
Quick Filters