Vendor CVEs
Microsoft
All CVEs
14,318 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-59242 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Heap-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59241 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Improper link resolution before file access ('link following') in Windows Health and Optimized Experiences Service allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59238 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-59234 | Hig | 0.51 | 7.8 | 0.01 | Oct 14, 2025 | Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-59233 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-59231 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-59227 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-59226 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Use after free in Microsoft Office Visio allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-59225 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-59224 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-59223 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-59222 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-59207 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59201 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Improper access control in Network Connection Status Indicator (NCSI) allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59199 | Hig | 0.51 | 7.8 | 0.04 | Oct 14, 2025 | Improper access control in Software Protection Platform (SPP) allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59192 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Buffer over-read in Storport.sys Driver allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59191 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Heap-based buffer overflow in Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59187 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Improper input validation in Windows Kernel allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-58728 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-58724 | Hig | 0.51 | 7.8 | 0.01 | Oct 14, 2025 | Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-58722 | Hig | 0.51 | 7.8 | 0.02 | Oct 14, 2025 | Heap-based buffer overflow in Windows DWM allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-58720 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Use of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allows an authorized attacker to disclose information locally. | ||
| CVE-2025-58714 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-55701 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Improper validation of specified type of input in Microsoft Windows allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-55697 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Heap-based buffer overflow in Azure Local allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-55696 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Time-of-check time-of-use (toctou) race condition in NtQueryInformation Token function (ntifs.h) allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-55694 | Hig | 0.51 | 7.8 | 0.03 | Oct 14, 2025 | Improper access control in Windows Error Reporting allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-55692 | Hig | 0.51 | 7.8 | 0.03 | Oct 14, 2025 | Improper input validation in Windows Error Reporting allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-55680 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Time-of-check time-of-use (toctou) race condition in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-55677 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Untrusted pointer dereference in Windows Device Association Broker service allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-55339 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Out-of-bounds read in Windows NDIS allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-55328 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Hyper-V allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-53768 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Use after free in Xbox allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-53150 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-50175 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-50152 | Hig | 0.51 | 7.8 | 0.00 | Oct 14, 2025 | Out-of-bounds read in Windows Kernel allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-24052 | Hig | 0.51 | 7.8 | 0.02 | Oct 14, 2025 | Microsoft is aware of vulnerabilities in the third party Agere Modem driver that ships natively with supported Windows operating systems. This is an announcement of the upcoming removal of ltmdm64.sys driver. The driver has been removed in the October cumulative update. Fax… | ||
| CVE-2025-55317 | Hig | 0.51 | 7.8 | 0.00 | Sep 9, 2025 | Improper link resolution before file access ('link following') in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-55316 | Hig | 0.51 | 7.8 | 0.00 | Sep 9, 2025 | External control of file name or path in Azure Arc allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-55245 | Hig | 0.51 | 7.8 | 0.00 | Sep 9, 2025 | Improper link resolution before file access ('link following') in Xbox allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-55228 | Hig | 0.51 | 7.8 | 0.00 | Sep 9, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to execute code locally. | ||
| CVE-2025-55224 | Hig | 0.51 | 7.8 | 0.00 | Sep 9, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to execute code locally. | ||
| CVE-2025-54916 | Hig | 0.51 | 7.8 | 0.02 | Sep 9, 2025 | Stack-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally. | ||
| CVE-2025-54913 | Hig | 0.51 | 7.8 | 0.00 | Sep 9, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows UI XAML Maps MapControlSettings allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-54912 | Hig | 0.51 | 7.8 | 0.00 | Sep 9, 2025 | Use after free in Windows BitLocker allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-54908 | Hig | 0.51 | 7.8 | 0.01 | Sep 9, 2025 | Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-54907 | Hig | 0.51 | 7.8 | 0.00 | Sep 9, 2025 | Heap-based buffer overflow in Microsoft Office Visio allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-54906 | Hig | 0.51 | 7.8 | 0.01 | Sep 9, 2025 | Free of memory not on the heap in Microsoft Office allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-54904 | Hig | 0.51 | 7.8 | 0.01 | Sep 9, 2025 | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-54903 | Hig | 0.51 | 7.8 | 0.01 | Sep 9, 2025 | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. |
- risk 0.51cvss 7.8epss 0.00
Heap-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Improper link resolution before file access ('link following') in Windows Health and Optimized Experiences Service allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.01
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Microsoft Office Visio allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Improper access control in Network Connection Status Indicator (NCSI) allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.04
Improper access control in Software Protection Platform (SPP) allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Buffer over-read in Storport.sys Driver allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Heap-based buffer overflow in Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Improper input validation in Windows Kernel allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.01
Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.02
Heap-based buffer overflow in Windows DWM allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Use of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allows an authorized attacker to disclose information locally.
- risk 0.51cvss 7.8epss 0.00
Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Improper validation of specified type of input in Microsoft Windows allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Heap-based buffer overflow in Azure Local allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Time-of-check time-of-use (toctou) race condition in NtQueryInformation Token function (ntifs.h) allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.03
Improper access control in Windows Error Reporting allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.03
Improper input validation in Windows Error Reporting allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Time-of-check time-of-use (toctou) race condition in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Untrusted pointer dereference in Windows Device Association Broker service allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Out-of-bounds read in Windows NDIS allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Hyper-V allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Xbox allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Out-of-bounds read in Windows Kernel allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.02
Microsoft is aware of vulnerabilities in the third party Agere Modem driver that ships natively with supported Windows operating systems. This is an announcement of the upcoming removal of ltmdm64.sys driver. The driver has been removed in the October cumulative update. Fax…
- risk 0.51cvss 7.8epss 0.00
Improper link resolution before file access ('link following') in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
External control of file name or path in Azure Arc allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Improper link resolution before file access ('link following') in Xbox allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.02
Stack-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows UI XAML Maps MapControlSettings allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Windows BitLocker allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.01
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Heap-based buffer overflow in Microsoft Office Visio allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.01
Free of memory not on the heap in Microsoft Office allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.01
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.01
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
Page 60 of 287