microsoft

15,039 tracked vulnerabilities.

CVE-2025-49760 LOW
Microsoft Windows Storage - Spoofing via External Control of File Name or Path
Jul 08, 2025
CVSS 3.5
EPSS 0.01
CVE-2025-49756 LOW
Microsoft 365 Apps - Security Feature Bypass via Broken Cryptographic Algorithm
Jul 08, 2025
CVSS 3.3
EPSS 0.00
CVE-2025-49753 HIGH
Windows Server RRAS Heap Overflow Remote Code Execution
Jul 08, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-49744 HIGH
Windows 10/11, Server 2016-2019 Local Privilege Escalation via Heap Overflow
Jul 08, 2025
CVSS 7.0
EPSS 0.01
CVE-2025-49742 HIGH
Windows 10 1507-22H2, Windows 11 22H2-24H2, Windows Server 2008 - Local Code Execution via Integer Overflow
Jul 08, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-49740 HIGH
Windows SmartScreen - Privilege Escalation
Jul 08, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-49739 HIGH
Visual Studio 2017, 2019, 2022 - Privilege Escalation via Improper Link Resolution
Jul 08, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-49738 HIGH
Microsoft PC Manager < 3.17.4.0 - Privilege Escalation via Improper Link Resolution
Jul 08, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-49737 HIGH
Microsoft Teams < 25163.3001.3726.6503 - Authenticated Privilege Escalation via Race Condition
Jul 08, 2025
CVSS 7.0
EPSS 0.00
CVE-2025-49735 HIGH
Windows Server 2012-2025 Unauthenticated RCE via KDC Proxy Service Use-After-Free
Jul 08, 2025
CVSS 8.1
EPSS 0.01
CVE-2025-49733 HIGH
Windows Win32K - Use-After-Free in ICOMP
Jul 08, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-49732 HIGH
Windows 10/11, Server 2008 - Privilege Escalation via Heap Overflow in Graphics
Jul 08, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-49731 LOW
Microsoft Teams - Privilege Escalation
Jul 08, 2025
CVSS 3.1
EPSS 0.00
CVE-2025-49730 HIGH
Windows 10/11, Server 2008 - Privilege Escalation via QoS Scheduler TOCTOU
Jul 08, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-49729 HIGH
Windows Server RRAS Heap Overflow Remote Code Execution
Jul 08, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-49727 HIGH
Windows Win32K < 10.0.26100.4652 Authenticated Privilege Escalation via Heap-based Buffer Overflow
Jul 08, 2025
CVSS 7.0
EPSS 0.00
CVE-2025-49726 HIGH
Windows 10/11, Server 2016/2019/2022 Use-After-Free in Notification Service
Jul 08, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-49725 HIGH
Windows 10 1607-22H2, Windows 11 22H2-24H2, Windows Server 2016-2022 - Use-After-Free in Notification Service
Jul 08, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-49724 HIGH
Windows Connected Devices Platform Service - Remote Code Execution via Use-After-Free
Jul 08, 2025
CVSS 8.8
EPSS 0.07
CVE-2025-49723 HIGH
Windows StateRepository API - Missing Authorization
Jul 08, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-49722 MEDIUM
Windows Print Spooler Components - Unauthenticated Denial of Service via Uncontrolled Resource Consumption
Jul 08, 2025
CVSS 5.7
EPSS 0.00
CVE-2025-49721 HIGH
Windows Fast FAT Driver - Heap-based Buffer Overflow
Jul 08, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-49719 HIGH
Microsoft SQL Server 2016-2022 Unauthenticated Information Disclosure via Network Input
Jul 08, 2025
CVSS 7.5
EPSS 0.10
CVE-2025-49718 HIGH
SQL Server 2019 15.0.2000.5-15.0.2135.5 & 2022 16.0.1000.6-16.0.1140.6 - Unauthenticated Information Disclosure
Jul 08, 2025
CVSS 7.5
EPSS 0.03
CVE-2025-49717 HIGH
SQL Server 2019/2022 Authenticated RCE via Heap-based Buffer Overflow
Jul 08, 2025
CVSS 8.5
EPSS 0.01