microsoft
15,043 tracked vulnerabilities.
CVE-2025-24069
MEDIUM
Windows 10/11, Server 2016-2019 Authenticated Info Disclosure via OOB Read
Jun 10, 2025
CVSS 5.5
EPSS 0.01
CVE-2025-24068
MEDIUM
Windows 10/11, Server 2016-2019 Authenticated Info Disclosure via Buffer Over-read
Jun 10, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-24065
MEDIUM
Windows Storage Management Provider - Out-of-bounds Read
Jun 10, 2025
CVSS 5.5
EPSS 0.01
CVE-2025-47966
CRITICAL
Power Automate for Desktop - Exposure of Sensitive Information to an Unauthorized Actor
Jun 05, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-47827
MEDIUM
KEV
IGEL OS < 11 - Secure Boot Bypass via Improper Cryptographic Signature Verification
Jun 05, 2025
CVSS 4.6
EPSS 0.04
CVE-2025-5419
HIGH
KEV
Google Chrome < 137.0.7151.68 - Out-of-bounds Read and Write in V8
Jun 03, 2025
CVSS 8.8
EPSS 0.06
CVE-2025-47181
HIGH
Microsoft Edge Update < 1.3.195.61 - Authenticated Privilege Escalation via Improper Link Resolution
May 22, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-47161
HIGH
Microsoft Defender for Endpoint < 101.25022.0002 - Privilege Escalation
May 15, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-26646
HIGH
Microsoft .NET, Visual Studio, and Build Tools - Path Spoofing via External Control of File Name or Path
May 13, 2025
CVSS 8.0
EPSS 0.01
CVE-2025-32709
HIGH
KEV
Windows 10/11, Server 2008-2016 - Privilege Escalation via AFD Null Pointer Dereference
May 13, 2025
CVSS 7.8
EPSS 0.02
CVE-2025-32707
HIGH
Windows 10/Server 2008-2019 Unauthenticated Privilege Escalation via NTFS OOB Read
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-32706
HIGH
KEV
Windows Common Log File System Driver - Authenticated Privilege Escalation via Improper Input Validation
May 13, 2025
CVSS 7.8
EPSS 0.02
CVE-2025-32705
HIGH
Microsoft 365 Apps and Office Long Term Servicing Channel - Out-of-bounds Read
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-32704
HIGH
Microsoft Excel - Out-of-bounds Read
May 13, 2025
CVSS 8.4
EPSS 0.00
CVE-2025-32703
MEDIUM
Visual Studio 2017, 2019, 2022 - Information Disclosure via Insufficient Access Control
May 13, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-32702
HIGH
Visual Studio 16.0-16.11.46 and 17.8.0-17.8.20 - Unauthenticated Command Injection
May 13, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-32701
HIGH
KEV
Windows Common Log File System Driver - Authenticated Use-After-Free
May 13, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-30400
HIGH
KEV
Windows 10/11, Server 2019/2022/2025 - Use-After-Free in DWM
May 13, 2025
CVSS 7.8
EPSS 0.02
CVE-2025-30397
HIGH
KEV
Microsoft Windows Scripting Engine - Remote Code Execution via Type Confusion
May 13, 2025
CVSS 7.5
EPSS 0.21
CVE-2025-30394
MEDIUM
Remote Desktop Gateway Service - DoS
May 13, 2025
CVSS 5.9
EPSS 0.21
CVE-2025-30393
HIGH
Microsoft Office Excel - Use After Free
May 13, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-30388
HIGH
Microsoft Windows Win32K - GRFX Heap-based Buffer Overflow
May 13, 2025
CVSS 7.8
EPSS 0.04
CVE-2025-30387
CRITICAL
Azure AI Document Intelligence Studio - Path Traversal
May 13, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-30386
HIGH
Microsoft 365 Apps and Office - Use-After-Free
May 13, 2025
CVSS 8.4
EPSS 0.01
CVE-2025-30385
HIGH
Windows Common Log File System Driver - Privilege Escalation
May 13, 2025
CVSS 7.8
EPSS 0.00
Products
windows_server_2016 4,751
windows_server_2019 4,522
windows_server_2012 3,938
windows_server_2008 3,554
windows_10 2,974
windows_server_2022 2,901
windows_7 2,368
windows_8.1 2,216
windows_10_21h2 2,118
windows_10_22h2 2,116
windows_10_1809 2,108
windows_rt_8.1 2,020
windows_10_1607 1,800
windows_server_2022_23h2 1,676
windows_11_23h2 1,666
windows_11_22h2 1,652
internet_explorer 1,635
windows_11_24h2 1,457
windows_server_2025 1,425
windows_10_1507 1,230
Windows 11 Version 24H2 1,087
Windows Server 2025 1,058
Windows Server 2025 (Server Core installation) 1,058
office 1,034
Windows Server 2022 1,014
windows_11_21h2 1,001
Windows Server 2019 1,000
Windows Server 2019 (Server Core installation) 997
Windows 10 Version 21H2 962
Windows 10 Version 22H2 959
Quick Filters