VYPR

Vendor CVEs

Microsoft

All CVEs

14,318 total · sorted by risk
  • CVE-2025-47168HigJun 10, 2025
    risk 0.51cvss 7.8epss 0.01

    Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

  • CVE-2025-33075HigJun 10, 2025
    risk 0.51cvss 7.8epss 0.01

    Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to elevate privileges locally.

  • CVE-2025-32718HigJun 10, 2025
    risk 0.51cvss 7.8epss 0.00

    Integer overflow or wraparound in Windows SMB allows an authorized attacker to elevate privileges locally.

  • CVE-2025-32716HigJun 10, 2025
    risk 0.51cvss 7.8epss 0.00

    Out-of-bounds read in Windows Media allows an authorized attacker to elevate privileges locally.

  • CVE-2025-32714HigJun 10, 2025
    risk 0.51cvss 7.8epss 0.01

    Improper access control in Windows Installer allows an authorized attacker to elevate privileges locally.

  • CVE-2025-32713HigJun 10, 2025
    risk 0.51cvss 7.8epss 0.01

    Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

  • CVE-2025-32712HigJun 10, 2025
    risk 0.51cvss 7.8epss 0.00

    Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

  • CVE-2025-32707HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.00

    Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.

  • CVE-2025-32705HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.00

    Out-of-bounds read in Microsoft Office Outlook allows an unauthorized attacker to execute code locally.

  • CVE-2025-32702HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.01

    Improper neutralization of special elements used in a command ('command injection') in Visual Studio allows an unauthorized attacker to execute code locally.

  • CVE-2025-30393HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.00

    Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  • CVE-2025-30388HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.03

    Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.

  • CVE-2025-30385HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.00

    Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

  • CVE-2025-30383HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.00

    Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  • CVE-2025-30382HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.02

    Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker to execute code locally.

  • CVE-2025-30381HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.00

    Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  • CVE-2025-30379HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.00

    Release of invalid pointer or reference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  • CVE-2025-30376HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.01

    Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  • CVE-2025-30375HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.01

    Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  • CVE-2025-29979HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.01

    Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  • CVE-2025-29978HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.00

    Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.

  • CVE-2025-29977HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.01

    Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  • CVE-2025-29976HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.01

    Improper privilege management in Microsoft Office SharePoint allows an authorized attacker to elevate privileges locally.

  • CVE-2025-29975HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.00

    Improper link resolution before file access ('link following') in Microsoft PC Manager allows an authorized attacker to elevate privileges locally.

  • CVE-2025-29970HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.00

    Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.

  • CVE-2025-24063HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.01

    Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.

  • CVE-2025-29823HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  • CVE-2025-29822HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Incomplete list of disallowed inputs in Microsoft Office OneNote allows an unauthorized attacker to bypass a security feature locally.

  • CVE-2025-29820HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

  • CVE-2025-29812HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Untrusted pointer dereference in Windows Kernel Memory allows an authorized attacker to elevate privileges locally.

  • CVE-2025-29811HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Improper input validation in Windows Mobile Broadband allows an authorized attacker to elevate privileges locally.

  • CVE-2025-29801HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Incorrect default permissions in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.

  • CVE-2025-29800HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Improper privilege management in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.

  • CVE-2025-29791HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.

  • CVE-2025-27752HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  • CVE-2025-27750HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  • CVE-2025-27749HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

  • CVE-2025-27748HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

  • CVE-2025-27747HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

  • CVE-2025-27746HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

  • CVE-2025-27745HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

  • CVE-2025-27744HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Improper access control in Microsoft Office allows an authorized attacker to elevate privileges locally.

  • CVE-2025-27743HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Untrusted search path in System Center allows an authorized attacker to elevate privileges locally.

  • CVE-2025-27741HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.

  • CVE-2025-27739HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally.

  • CVE-2025-27733HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.

  • CVE-2025-27731HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Improper input validation in OpenSSH for Windows allows an authorized attacker to elevate privileges locally.

  • CVE-2025-27730HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.

  • CVE-2025-27729HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Use after free in Windows Shell allows an unauthorized attacker to execute code locally.

  • CVE-2025-27728HigApr 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Out-of-bounds read in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.

Page 63 of 287