Filtered by vendor Microsoft
Subscribe
Total
21549 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2024-43591 | 1 Microsoft | 2 Azure Command-line Interface, Azure Service Connector | 2025-07-02 | N/A | 8.7 HIGH |
Azure Command Line Integration (CLI) Elevation of Privilege Vulnerability | |||||
CVE-2025-24049 | 1 Microsoft | 1 Azure Command-line Interface | 2025-07-02 | N/A | 8.4 HIGH |
Improper neutralization of special elements used in a command ('command injection') in Azure Command Line Integration (CLI) allows an unauthorized attacker to elevate privileges locally. | |||||
CVE-2025-24055 | 1 Microsoft | 15 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 12 more | 2025-07-02 | N/A | 4.3 MEDIUM |
Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to disclose information with a physical attack. | |||||
CVE-2025-24057 | 1 Microsoft | 3 365 Apps, Office, Office Long Term Servicing Channel | 2025-07-02 | N/A | 7.8 HIGH |
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally. | |||||
CVE-2025-24050 | 1 Microsoft | 12 Windows 10 1607, Windows 10 1809, Windows 10 21h2 and 9 more | 2025-07-02 | N/A | 7.8 HIGH |
Heap-based buffer overflow in Role: Windows Hyper-V allows an authorized attacker to elevate privileges locally. | |||||
CVE-2025-24051 | 1 Microsoft | 15 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 12 more | 2025-07-02 | N/A | 8.8 HIGH |
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network. | |||||
CVE-2025-24056 | 1 Microsoft | 15 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 12 more | 2025-07-02 | N/A | 8.8 HIGH |
Heap-based buffer overflow in Windows Telephony Server allows an unauthorized attacker to execute code over a network. | |||||
CVE-2025-24059 | 1 Microsoft | 15 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 12 more | 2025-07-02 | N/A | 7.8 HIGH |
Incorrect conversion between numeric types in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. | |||||
CVE-2025-24064 | 1 Microsoft | 7 Windows Server 2008, Windows Server 2012, Windows Server 2016 and 4 more | 2025-07-02 | N/A | 8.1 HIGH |
Use after free in DNS Server allows an unauthorized attacker to execute code over a network. | |||||
CVE-2025-24066 | 1 Microsoft | 10 Windows 10 1507, Windows 10 1607, Windows 10 21h2 and 7 more | 2025-07-02 | N/A | 7.8 HIGH |
Heap-based buffer overflow in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally. | |||||
CVE-2025-24081 | 1 Microsoft | 5 365 Apps, Excel, Office and 2 more | 2025-07-02 | N/A | 7.8 HIGH |
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||||
CVE-2025-24075 | 1 Microsoft | 5 365 Apps, Excel, Office and 2 more | 2025-07-02 | N/A | 7.8 HIGH |
Stack-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||||
CVE-2025-24083 | 1 Microsoft | 3 365 Apps, Office, Office Long Term Servicing Channel | 2025-07-02 | N/A | 7.8 HIGH |
Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally. | |||||
CVE-2025-24080 | 1 Microsoft | 3 365 Apps, Office, Office Long Term Servicing Channel | 2025-07-02 | N/A | 7.8 HIGH |
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. | |||||
CVE-2025-24082 | 1 Microsoft | 5 365 Apps, Excel, Office and 2 more | 2025-07-02 | N/A | 7.8 HIGH |
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||||
CVE-2025-24078 | 1 Microsoft | 4 365 Apps, Office, Office Long Term Servicing Channel and 1 more | 2025-07-02 | N/A | 7.0 HIGH |
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. | |||||
CVE-2025-24077 | 1 Microsoft | 2 365 Apps, Office Long Term Servicing Channel | 2025-07-02 | N/A | 7.8 HIGH |
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. | |||||
CVE-2025-24079 | 1 Microsoft | 4 365 Apps, Office, Office Long Term Servicing Channel and 1 more | 2025-07-02 | N/A | 7.8 HIGH |
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. | |||||
CVE-2025-24070 | 1 Microsoft | 2 Asp.net Core, Visual Studio 2022 | 2025-07-02 | N/A | 7.0 HIGH |
Weak authentication in ASP.NET Core & Visual Studio allows an unauthorized attacker to elevate privileges over a network. | |||||
CVE-2025-24048 | 1 Microsoft | 11 Windows 10 1607, Windows 10 1809, Windows 10 21h2 and 8 more | 2025-07-02 | N/A | 7.8 HIGH |
Heap-based buffer overflow in Role: Windows Hyper-V allows an authorized attacker to elevate privileges locally. |