Full List

Search

Recent Vulnerabilities

• CVE-2025-27745 • published on April 8, 2025 Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
• CVE-2025-27742 • published on April 8, 2025 Out-of-bounds read in Windows NTFS allows an unauthorized attacker to disclose information locally.
• CVE-2025-27744 • published on April 8, 2025 Improper access control in Microsoft Office allows an authorized attacker to elevate privileges locally.
• CVE-2025-27741 • published on April 8, 2025 Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.
• CVE-2025-27740 • published on April 8, 2025 Weak authentication in Windows Active Directory Certificate Services allows an authorized attacker to elevate privileges over a network.
• CVE-2025-27479 • published on April 8, 2025 Insufficient resource pool in Windows Kerberos allows an unauthorized attacker to deny service over a network.
• CVE-2025-27478 • published on April 8, 2025 Heap-based buffer overflow in Windows Local Security Authority (LSA) allows an authorized attacker to elevate privileges locally.
• CVE-2025-27477 • published on April 8, 2025 Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.
• CVE-2025-27475 • published on April 8, 2025 Sensitive data storage in improperly locked memory in Windows Update Stack allows an authorized attacker to elevate privileges locally.
• CVE-2025-27476 • published on April 8, 2025 Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.
• CVE-2025-27474 • published on April 8, 2025 Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.
• CVE-2025-27472 • published on April 8, 2025 Protection mechanism failure in Windows Mark of the Web (MOTW) allows an unauthorized attacker to bypass a security feature over a network.
• CVE-2025-27473 • published on April 8, 2025 Uncontrolled resource consumption in Windows HTTP.sys allows an unauthorized attacker to deny service over a network.
• CVE-2025-27470 • published on April 8, 2025 Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.
• CVE-2025-27471 • published on April 8, 2025 Sensitive data storage in improperly locked memory in Microsoft Streaming Service allows an unauthorized attacker to deny service over a network.
• CVE-2025-26688 • published on April 8, 2025 Stack-based buffer overflow in Microsoft Virtual Hard Drive allows an authorized attacker to elevate privileges locally.
• CVE-2025-26687 • published on April 8, 2025 Use after free in Windows Win32K - GRFX allows an unauthorized attacker to elevate privileges over a network.
• CVE-2025-26686 • published on April 8, 2025 Sensitive data storage in improperly locked memory in Windows TCP/IP allows an unauthorized attacker to execute code over a network.
• CVE-2025-26680 • published on April 8, 2025 Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.
• CVE-2025-26681 • published on April 8, 2025 Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.