microsoft

14,176 tracked vulnerabilities.

CVE-2024-43449 MEDIUM
Windows 10 1507-22H2 and Windows 11 22H2 - Elevation of Privilege via USB Video Class System Driver
Nov 12, 2024
CVSS 6.8
EPSS 0.00
CVE-2024-43447 HIGH
Windows Server 2022 < 10.0.20348.2849 - Remote Code Execution via SMBv3 Server Double Free
Nov 12, 2024
CVSS 8.1
EPSS 0.02
CVE-2024-38264 MEDIUM
Windows 11/Server 2022/2025 DoS in Virtual Hard Disk
Nov 12, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-38255 HIGH
Microsoft SQL Server 2016-2019 Native Client - Remote Code Execution
Nov 12, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-38203 MEDIUM
Windows Package Library Manager - Info Disclosure
Nov 12, 2024
CVSS 6.2
EPSS 0.00
CVE-2024-43577 MEDIUM
Microsoft Edge Chromium < 130.0.2849.46 - Spoofing
Oct 18, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-49023 MEDIUM
Microsoft Edge Chromium < 130.0.2849.46 - Remote Code Execution via Use-After-Free
Oct 18, 2024
CVSS 5.9
EPSS 0.01
CVE-2024-43596 MEDIUM
Microsoft Edge Chromium < 130.0.2849.46 - Remote Code Execution via Type Confusion
Oct 17, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-43595 MEDIUM
Microsoft Edge Chromium < 130.0.2849.46 - Remote Code Execution
Oct 17, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-43587 MEDIUM
Microsoft Edge Chromium < 130.0.2849.46 - Remote Code Execution via Heap-based Buffer Overflow
Oct 17, 2024
CVSS 5.9
EPSS 0.01
CVE-2024-43580 MEDIUM
Microsoft Edge Chromium < 130.0.2849.46 - Spoofing via Insufficient UI Warning
Oct 17, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-43579 HIGH
Microsoft Edge Chromium < 130.0.2849.46 - Remote Code Execution via Heap-based Buffer Overflow
Oct 17, 2024
CVSS 7.6
EPSS 0.06
CVE-2024-43578 HIGH
Microsoft Edge Chromium < 130.0.2849.46 - Remote Code Execution
Oct 17, 2024
CVSS 7.6
EPSS 0.06
CVE-2024-43566 HIGH
Microsoft Edge Chromium < 130.0.2849.46 - Remote Code Execution
Oct 17, 2024
CVSS 7.5
EPSS 0.07
CVE-2024-38204 HIGH
Azure Functions - Privilege Escalation via Improper Access Control
Oct 15, 2024
CVSS 7.5
EPSS 0.07
CVE-2024-38190 HIGH
Power Platform - Unauthenticated Sensitive Information Exposure via Network Attack
Oct 15, 2024
CVSS 8.6
EPSS 0.02
CVE-2024-38139 HIGH
Microsoft Dataverse - Privilege Escalation
Oct 15, 2024
CVSS 8.7
EPSS 0.01
CVE-2024-43610 HIGH
Copilot Studio - Unauthenticated Exposure of Sensitive Information
Oct 09, 2024
CVSS 7.4
EPSS 0.05
CVE-2024-43616 HIGH
Microsoft 365 Apps and Office - Remote Code Execution via Untrusted Search Path
Oct 08, 2024
CVSS 7.8
EPSS 0.01
CVE-2024-43615 HIGH
Microsoft OpenSSH for Windows Remote Code Execution
Oct 08, 2024
CVSS 7.1
EPSS 0.09
CVE-2024-43614 MEDIUM
Microsoft Defender for Endpoint < 101.24052.0002 - Authenticated Relative Path Traversal
Oct 08, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-43612 MEDIUM
Power BI Report Server < 15.0.1116.121 - Spoofing
Oct 08, 2024
CVSS 6.9
EPSS 0.00
CVE-2024-43611 HIGH
Windows Server RRAS Remote Code Execution (2008, 2012, 2016, 2019, 2022)
Oct 08, 2024
CVSS 8.8
EPSS 0.08
CVE-2024-43609 MEDIUM
Microsoft 365 Apps and Office - Exposure of Sensitive Information via Spoofing
Oct 08, 2024
CVSS 6.5
EPSS 0.11
CVE-2024-43608 HIGH
Windows Server RCE in Routing and Remote Access Service
Oct 08, 2024
CVSS 8.8
EPSS 0.04
Products
windows_server_2016 4,606 windows_server_2019 4,345 windows_server_2012 3,825 windows_server_2008 3,554 windows_10 2,974 windows_server_2022 2,699 windows_7 2,368 windows_8.1 2,216 windows_rt_8.1 2,020 windows_10_1809 1,935 windows_10_21h2 1,934 windows_10_22h2 1,932 windows_server_2022_23h2 1,666 windows_10_1607 1,658 windows_11_22h2 1,651 internet_explorer 1,635 windows_11_23h2 1,548 windows_11_24h2 1,234 windows_10_1507 1,230 windows_server_2025 1,195 office 1,032 windows_11_21h2 1,001 windows_vista 828 edge 756 windows_xp 739 windows_11 573 windows_2000 515 windows_11_25h2 502 sharepoint_server 478 365_apps 472
Quick Filters
Critical CVEs With Exploits In CISA KEV