Vendor CVEs
Microsoft
All CVEs
14,324 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-21331 | Hig | 0.48 | 7.3 | 0.01 | Jan 14, 2025 | Windows Installer Elevation of Privilege Vulnerability | ||
| CVE-2025-21173 | Hig | 0.48 | 7.3 | 0.01 | Jan 14, 2025 | .NET Elevation of Privilege Vulnerability | ||
| CVE-2024-49107 | Hig | 0.48 | 7.3 | 0.02 | Dec 12, 2024 | WmsRepair Service Elevation of Privilege Vulnerability | ||
| CVE-2024-49070 | Hig | 0.48 | 7.4 | 0.02 | Dec 12, 2024 | Microsoft SharePoint Remote Code Execution Vulnerability | ||
| CVE-2024-43594 | Hig | 0.48 | 7.3 | 0.02 | Dec 12, 2024 | Microsoft System Center Elevation of Privilege Vulnerability | ||
| CVE-2024-49056 | Hig | 0.48 | 7.3 | 0.01 | Nov 12, 2024 | Authentication bypass by assumed-immutable data on airlift.microsoft.com allows an authorized attacker to elevate privileges over a network. | ||
| CVE-2024-43610 | Hig | 0.48 | 7.4 | 0.01 | Oct 9, 2024 | Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio allows a unauthenticated attacker to view sensitive information through network attack vector | ||
| CVE-2024-43553 | Hig | 0.48 | 7.4 | 0.01 | Oct 8, 2024 | NT OS Kernel Elevation of Privilege Vulnerability | ||
| CVE-2024-43552 | Hig | 0.48 | 7.3 | 0.01 | Oct 8, 2024 | Windows Shell Remote Code Execution Vulnerability | ||
| CVE-2024-43550 | Hig | 0.48 | 7.4 | 0.01 | Oct 8, 2024 | Windows Secure Channel Spoofing Vulnerability | ||
| CVE-2024-43529 | Hig | 0.48 | 7.3 | 0.01 | Oct 8, 2024 | Windows Print Spooler Elevation of Privilege Vulnerability | ||
| CVE-2024-43495 | Hig | 0.48 | 7.3 | 0.01 | Sep 10, 2024 | Windows libarchive Remote Code Execution Vulnerability | ||
| CVE-2024-43475 | Hig | 0.48 | 7.3 | 0.02 | Sep 10, 2024 | Microsoft Windows Admin Center Information Disclosure Vulnerability | ||
| CVE-2024-43470 | Hig | 0.48 | 7.3 | 0.01 | Sep 10, 2024 | Azure Network Watcher VM Agent Elevation of Privilege Vulnerability | ||
| CVE-2024-43454 | Hig | 0.48 | 7.1 | 0.21 | Sep 10, 2024 | Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability | ||
| CVE-2024-38217 | Med | 0.48 | 5.4 | 0.10 | KEV | Sep 10, 2024 | Windows Mark of the Web Security Feature Bypass Vulnerability | |
| CVE-2024-38202 | Hig | 0.48 | 7.3 | 0.02 | Aug 8, 2024 | Summary Microsoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities or circumvent some features of Virtualization Based Security… | ||
| CVE-2024-38081 | Hig | 0.48 | 7.3 | 0.01 | Jul 9, 2024 | .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability | ||
| CVE-2024-38033 | Hig | 0.48 | 7.3 | 0.01 | Jul 9, 2024 | PowerShell Elevation of Privilege Vulnerability | ||
| CVE-2024-30081 | Hig | 0.48 | 7.1 | 0.24 | Jul 9, 2024 | Windows NTLM Spoofing Vulnerability | ||
| CVE-2024-30061 | Hig | 0.48 | 7.3 | 0.01 | Jul 9, 2024 | Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability | ||
| CVE-2024-35248 | Hig | 0.48 | 7.3 | 0.01 | Jun 11, 2024 | Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability | ||
| CVE-2024-30102 | Hig | 0.48 | 7.3 | 0.01 | Jun 11, 2024 | Microsoft Office Remote Code Execution Vulnerability | ||
| CVE-2024-30093 | Hig | 0.48 | 7.3 | 0.01 | Jun 11, 2024 | Windows Storage Elevation of Privilege Vulnerability | ||
| CVE-2024-29063 | Hig | 0.48 | 7.3 | 0.01 | Apr 9, 2024 | Azure AI Search Information Disclosure Vulnerability | ||
| CVE-2024-26232 | Hig | 0.48 | 7.3 | 0.01 | Apr 9, 2024 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2024-26216 | Hig | 0.48 | 7.3 | 0.01 | Apr 9, 2024 | Windows File Server Resource Management Service Elevation of Privilege Vulnerability | ||
| CVE-2024-26194 | Hig | 0.48 | 7.4 | 0.00 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | ||
| CVE-2024-21409 | Hig | 0.48 | 7.3 | 0.03 | Apr 9, 2024 | .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability | ||
| CVE-2024-26203 | Hig | 0.48 | 7.3 | 0.01 | Mar 12, 2024 | Azure Data Studio Elevation of Privilege Vulnerability | ||
| CVE-2024-21443 | Hig | 0.48 | 7.3 | 0.01 | Mar 12, 2024 | Windows Kernel Elevation of Privilege Vulnerability | ||
| CVE-2024-21329 | Hig | 0.48 | 7.3 | 0.01 | Feb 13, 2024 | Azure Connected Machine Agent Elevation of Privilege Vulnerability | ||
| CVE-2024-20696 | Hig | 0.48 | 7.3 | 0.03 | Jan 9, 2024 | Windows libarchive Remote Code Execution Vulnerability | ||
| CVE-2023-35624 | Hig | 0.48 | 7.3 | 0.01 | Dec 12, 2023 | Azure Connected Machine Agent Elevation of Privilege Vulnerability | ||
| CVE-2023-36014 | Hig | 0.48 | 7.3 | 0.01 | Nov 10, 2023 | Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability | ||
| CVE-2023-36034 | Hig | 0.48 | 7.3 | 0.03 | Nov 3, 2023 | Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability | ||
| CVE-2023-36605 | Hig | 0.48 | 7.4 | 0.01 | Oct 10, 2023 | Windows Named Pipe Filesystem Elevation of Privilege Vulnerability | ||
| CVE-2023-36592 | Hig | 0.48 | 7.3 | 0.01 | Oct 10, 2023 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2023-36591 | Hig | 0.48 | 7.3 | 0.01 | Oct 10, 2023 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2023-36590 | Hig | 0.48 | 7.3 | 0.01 | Oct 10, 2023 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2023-36589 | Hig | 0.48 | 7.3 | 0.01 | Oct 10, 2023 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2023-36583 | Hig | 0.48 | 7.3 | 0.01 | Oct 10, 2023 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2023-36582 | Hig | 0.48 | 7.3 | 0.01 | Oct 10, 2023 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2023-36578 | Hig | 0.48 | 7.3 | 0.01 | Oct 10, 2023 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2023-36575 | Hig | 0.48 | 7.3 | 0.01 | Oct 10, 2023 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2023-36574 | Hig | 0.48 | 7.3 | 0.01 | Oct 10, 2023 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2023-36573 | Hig | 0.48 | 7.3 | 0.01 | Oct 10, 2023 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2023-36572 | Hig | 0.48 | 7.3 | 0.01 | Oct 10, 2023 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2023-36571 | Hig | 0.48 | 7.3 | 0.01 | Oct 10, 2023 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2023-36570 | Hig | 0.48 | 7.3 | 0.01 | Oct 10, 2023 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability |
- risk 0.48cvss 7.3epss 0.01
Windows Installer Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.01
.NET Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.02
WmsRepair Service Elevation of Privilege Vulnerability
- risk 0.48cvss 7.4epss 0.02
Microsoft SharePoint Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.02
Microsoft System Center Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.01
Authentication bypass by assumed-immutable data on airlift.microsoft.com allows an authorized attacker to elevate privileges over a network.
- risk 0.48cvss 7.4epss 0.01
Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio allows a unauthenticated attacker to view sensitive information through network attack vector
- risk 0.48cvss 7.4epss 0.01
NT OS Kernel Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.01
Windows Shell Remote Code Execution Vulnerability
- risk 0.48cvss 7.4epss 0.01
Windows Secure Channel Spoofing Vulnerability
- risk 0.48cvss 7.3epss 0.01
Windows Print Spooler Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.01
Windows libarchive Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.02
Microsoft Windows Admin Center Information Disclosure Vulnerability
- risk 0.48cvss 7.3epss 0.01
Azure Network Watcher VM Agent Elevation of Privilege Vulnerability
- risk 0.48cvss 7.1epss 0.21
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
- risk 0.48cvss 5.4epss 0.10
Windows Mark of the Web Security Feature Bypass Vulnerability
- risk 0.48cvss 7.3epss 0.02
Summary Microsoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities or circumvent some features of Virtualization Based Security…
- risk 0.48cvss 7.3epss 0.01
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.01
PowerShell Elevation of Privilege Vulnerability
- risk 0.48cvss 7.1epss 0.24
Windows NTLM Spoofing Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Office Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Windows Storage Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.01
Azure AI Search Information Disclosure Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Windows File Server Resource Management Service Elevation of Privilege Vulnerability
- risk 0.48cvss 7.4epss 0.00
Secure Boot Security Feature Bypass Vulnerability
- risk 0.48cvss 7.3epss 0.03
.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Azure Data Studio Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.01
Windows Kernel Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.01
Azure Connected Machine Agent Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.03
Windows libarchive Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Azure Connected Machine Agent Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.03
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
- risk 0.48cvss 7.4epss 0.01
Windows Named Pipe Filesystem Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
Page 125 of 287