Vendor CVEs
Microsoft
All CVEs
14,318 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-26180 | Hig | 0.51 | 7.8 | 0.00 | Apr 14, 2026 | Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-26179 | Hig | 0.51 | 7.8 | 0.00 | Apr 14, 2026 | Double free in Windows Kernel allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-26176 | Hig | 0.51 | 7.8 | 0.00 | Apr 14, 2026 | Heap-based buffer overflow in Windows Client Side Caching driver (csc.sys) allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-26172 | Hig | 0.51 | 7.8 | 0.00 | Apr 14, 2026 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Push Notifications allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-26170 | Hig | 0.51 | 7.8 | 0.00 | Apr 14, 2026 | Improper input validation in Microsoft PowerShell allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-26168 | Hig | 0.51 | 7.8 | 0.00 | Apr 14, 2026 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-26163 | Hig | 0.51 | 7.8 | 0.00 | Apr 14, 2026 | Double free in Windows Kernel allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-26162 | Hig | 0.51 | 7.8 | 0.00 | Apr 14, 2026 | Access of resource using incompatible type ('type confusion') in Windows OLE allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-26161 | Hig | 0.51 | 7.8 | 0.00 | Apr 14, 2026 | Untrusted pointer dereference in Windows Sensor Data Service allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-26160 | Hig | 0.51 | 7.8 | 0.00 | Apr 14, 2026 | Missing authentication for critical function in Windows Remote Desktop Licensing Service allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-26159 | Hig | 0.51 | 7.8 | 0.00 | Apr 14, 2026 | Missing authentication for critical function in Windows Remote Desktop Licensing Service allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-26156 | Hig | 0.51 | 7.8 | 0.00 | Apr 14, 2026 | Heap-based buffer overflow in Windows Hyper-V allows an unauthorized attacker to execute code locally. | ||
| CVE-2026-26153 | Hig | 0.51 | 7.8 | 0.00 | Apr 14, 2026 | Out-of-bounds read in Windows Encrypting File System (EFS) allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-26143 | Hig | 0.51 | 7.8 | 0.01 | Apr 14, 2026 | Improper input validation in Microsoft PowerShell allows an unauthorized attacker to bypass a security feature locally. | ||
| CVE-2026-23657 | Hig | 0.51 | 7.8 | 0.00 | Apr 14, 2026 | Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. | ||
| CVE-2026-20930 | Hig | 0.51 | 7.8 | 0.00 | Apr 14, 2026 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-26134 | Hig | 0.51 | 7.8 | 0.00 | Mar 10, 2026 | Integer overflow or wraparound in Microsoft Office allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-26131 | Hig | 0.51 | 7.8 | 0.00 | Mar 10, 2026 | Incorrect default permissions in .NET allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-26128 | Hig | 0.51 | 7.8 | 0.00 | Mar 10, 2026 | Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-25187 | Hig | 0.51 | 7.8 | 0.03 | Mar 10, 2026 | Improper link resolution before file access ('link following') in Winlogon allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-20864 | Hig | 0.51 | 7.8 | 0.01 | Jan 13, 2026 | Heap-based buffer overflow in Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-20817 | Hig | 0.51 | 7.8 | 0.05 | Jan 13, 2026 | Improper handling of insufficient permissions or privileges in Windows Error Reporting allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-62216 | Hig | 0.51 | 7.8 | 0.00 | Nov 11, 2025 | Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-62205 | Hig | 0.51 | 7.8 | 0.00 | Nov 11, 2025 | Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-62203 | Hig | 0.51 | 7.8 | 0.00 | Nov 11, 2025 | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-62201 | Hig | 0.51 | 7.8 | 0.00 | Nov 11, 2025 | Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-62200 | Hig | 0.51 | 7.8 | 0.00 | Nov 11, 2025 | Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-62199 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2025 | Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-60727 | Hig | 0.51 | 7.8 | 0.00 | Nov 11, 2025 | Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-60721 | Hig | 0.51 | 7.8 | 0.00 | Nov 11, 2025 | Privilege context switching error in Windows Administrator Protection allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-60720 | Hig | 0.51 | 7.8 | 0.00 | Nov 11, 2025 | Buffer over-read in Windows TDX.sys allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-60718 | Hig | 0.51 | 7.8 | 0.00 | Nov 11, 2025 | Untrusted search path in Windows Administrator Protection allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-60714 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2025 | Heap-based buffer overflow in Windows OLE allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-60713 | Hig | 0.51 | 7.8 | 0.00 | Nov 11, 2025 | Untrusted pointer dereference in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-60709 | Hig | 0.51 | 7.8 | 0.01 | Nov 11, 2025 | Out-of-bounds read in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-60707 | Hig | 0.51 | 7.8 | 0.00 | Nov 11, 2025 | Use after free in Multimedia Class Scheduler Service (MMCSS) allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-60705 | Hig | 0.51 | 7.8 | 0.02 | Nov 11, 2025 | Improper access control in Windows Client-Side Caching (CSC) Service allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-60703 | Hig | 0.51 | 7.8 | 0.00 | Nov 11, 2025 | Untrusted pointer dereference in Windows Remote Desktop allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59514 | Hig | 0.51 | 7.8 | 0.00 | Nov 11, 2025 | Improper privilege management in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59512 | Hig | 0.51 | 7.8 | 0.03 | Nov 11, 2025 | Improper access control in Customer Experience Improvement Program (CEIP) allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59511 | Hig | 0.51 | 7.8 | 0.00 | Nov 11, 2025 | External control of file name or path in Windows WLAN Service allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59505 | Hig | 0.51 | 7.8 | 0.00 | Nov 11, 2025 | Double free in Windows Smart Card allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59494 | Hig | 0.51 | 7.8 | 0.01 | Oct 14, 2025 | Improper access control in Azure Monitor Agent allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59290 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59281 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Improper link resolution before file access ('link following') in XBox Gaming Services allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59278 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Improper validation of specified type of input in Windows Authentication Methods allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59277 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Improper validation of specified type of input in Windows Authentication Methods allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59275 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Improper validation of specified type of input in Windows Authentication Methods allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59255 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59243 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. |
- risk 0.51cvss 7.8epss 0.00
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Double free in Windows Kernel allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Heap-based buffer overflow in Windows Client Side Caching driver (csc.sys) allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Improper input validation in Microsoft PowerShell allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Double free in Windows Kernel allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Access of resource using incompatible type ('type confusion') in Windows OLE allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Untrusted pointer dereference in Windows Sensor Data Service allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Missing authentication for critical function in Windows Remote Desktop Licensing Service allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Missing authentication for critical function in Windows Remote Desktop Licensing Service allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Heap-based buffer overflow in Windows Hyper-V allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Out-of-bounds read in Windows Encrypting File System (EFS) allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.01
Improper input validation in Microsoft PowerShell allows an unauthorized attacker to bypass a security feature locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Integer overflow or wraparound in Microsoft Office allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Incorrect default permissions in .NET allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.03
Improper link resolution before file access ('link following') in Winlogon allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.01
Heap-based buffer overflow in Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.05
Improper handling of insufficient permissions or privileges in Windows Error Reporting allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.01
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Privilege context switching error in Windows Administrator Protection allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Buffer over-read in Windows TDX.sys allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Untrusted search path in Windows Administrator Protection allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.01
Heap-based buffer overflow in Windows OLE allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Untrusted pointer dereference in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.01
Out-of-bounds read in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Multimedia Class Scheduler Service (MMCSS) allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.02
Improper access control in Windows Client-Side Caching (CSC) Service allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Untrusted pointer dereference in Windows Remote Desktop allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Improper privilege management in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.03
Improper access control in Customer Experience Improvement Program (CEIP) allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
External control of file name or path in Windows WLAN Service allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Double free in Windows Smart Card allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.01
Improper access control in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Improper link resolution before file access ('link following') in XBox Gaming Services allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Improper validation of specified type of input in Windows Authentication Methods allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Improper validation of specified type of input in Windows Authentication Methods allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Improper validation of specified type of input in Windows Authentication Methods allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
Page 59 of 287