microsoft

15,039 tracked vulnerabilities.

CVE-2025-49683 HIGH
Windows 10 1507-22H2, Windows 11 22H2-24H2, Windows Server 2008 - Local Code Execution via VHDX Integer Overflow
Jul 08, 2025
CVSS 7.8
EPSS 0.02
CVE-2025-49682 HIGH
Windows 10/11, Server 2022/2025 - Authenticated Use-After-Free in Media
Jul 08, 2025
CVSS 7.3
EPSS 0.00
CVE-2025-49681 MEDIUM
Windows Server RRAS Unauthenticated Out-of-bounds Read
Jul 08, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-49680 HIGH
Windows Performance Recorder - Denial of Service via Improper Link Resolution
Jul 08, 2025
CVSS 7.3
EPSS 0.00
CVE-2025-49679 HIGH
Microsoft Windows Shell - Elevation of Privilege via Numeric Truncation
Jul 08, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-49678 HIGH
Windows 10 1507-22H2, Windows 11 22H2-24H2, Windows Server 2008 - Privilege Escalation via NTFS Null Pointer Dereference
Jul 08, 2025
CVSS 7.0
EPSS 0.00
CVE-2025-49677 HIGH
Windows 11 22H2 < 10.0.22621.5624 - Authenticated Use-After-Free in Brokering File System
Jul 08, 2025
CVSS 7.0
EPSS 0.01
CVE-2025-49676 HIGH
Windows Server RRAS Heap Overflow Remote Code Execution
Jul 08, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-49675 HIGH
Windows 10/11, Server 2008 - Use-After-Free in Kernel Streaming WOW Thunk
Jul 08, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-49674 HIGH
Windows Server 2008-2025 RRAS Heap Overflow RCE
Jul 08, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-49673 HIGH
Windows Server RRAS Heap Overflow RCE (2008, 2012, 2016, 2019, 2022, 2025)
Jul 08, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-49672 HIGH
Windows Server RRAS Heap Overflow Remote Code Execution
Jul 08, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-49671 MEDIUM
Windows Server 2008/2012/2016/2019/2022/2025 Information Disclosure via RRAS
Jul 08, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-49670 MEDIUM
Windows Server RRAS Heap Overflow Remote Code Execution
Jul 08, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-49669 HIGH
Windows Server RRAS Heap Overflow Remote Code Execution (2008, 2012, 2016, 2019, 2022, 2025)
Jul 08, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-49668 HIGH
Windows Server RRAS Heap Overflow Remote Code Execution
Jul 08, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-49667 HIGH
Windows 10 1507-24H2 and Windows Server 2008-2012 - Authenticated Privilege Escalation via Win32K ICOMP Double Free
Jul 08, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-49666 HIGH
Windows Server 2016/2019/2022/2025 Authenticated RCE via Heap-based Buffer Overflow
Jul 08, 2025
CVSS 7.2
EPSS 0.01
CVE-2025-49665 HIGH
Windows 10/11, Server 2012/2016 Privilege Escalation via Workspace Broker Race Condition
Jul 08, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-49664 MEDIUM
Windows User-Mode Driver Framework Host - Information Disclosure
Jul 08, 2025
CVSS 5.5
EPSS 0.01
CVE-2025-49663 HIGH
Windows Server RRAS Heap Overflow RCE (2008, 2012, 2016, 2019, 2022, 2025)
Jul 08, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-49661 HIGH
Windows Ancillary Function Driver - Privilege Escalation
Jul 08, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-49660 HIGH
Windows 10 1507-22H2, Windows 11 22H2-24H2, Windows Server 2012-2016 - Authenticated Use-After-Free in Event Tracing
Jul 08, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-49659 HIGH
Windows TDX.sys - Authenticated Buffer Over-read
Jul 08, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-49658 MEDIUM
Windows TDX.sys - Authenticated Out-of-bounds Read
Jul 08, 2025
CVSS 5.5
EPSS 0.00