threat
engine
.sh
Back
·
··:··
Home
/
Product
/
microsoft powershell
Product
microsoft powershell
25 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2026-26171
>= 7.5 and < 7.5.6
Uncontrolled resource consumption in .NET allows an unauthorized attacker to deny service over a network.
7.5
HIGH
CVE-2026-26143
>= 7.4 and < 7.4.14
Improper input validation in Microsoft PowerShell allows an unauthorized attacker to bypass a security feature locally.
7.8
HIGH
CVE-2025-25004
>= 7.4 and < 7.4.13
Improper access control in Microsoft PowerShell allows an authorized attacker to elevate privileges locally.
7.3
HIGH
CVE-2025-49734
>= 7.4 and < 7.4.12
Improper restriction of communication channel to intended endpoints in Windows PowerShell allows an authorized attacker to elevate
7.0
HIGH
CVE-2025-30399
>= 7.4 and < 7.4.11
Untrusted search path in .NET and Visual Studio allows an unauthorized attacker to execute code over a network.
7.5
HIGH
CVE-2025-21171
all versions
.NET Remote Code Execution Vulnerability
7.5
HIGH
CVE-2024-30045
>= 7.4 and < 7.4.3
.NET and Visual Studio Remote Code Execution Vulnerability
6.3
MEDIUM
CVE-2024-21409
>= 7.2 and < 7.2.19
.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability
7.3
HIGH
CVE-2024-26190
>= 7.3 and < 7.3.12
Microsoft QUIC Denial of Service Vulnerability
7.5
HIGH
CVE-2024-21392
>= 7.3 and < 7.3.12
.NET and Visual Studio Denial of Service Vulnerability
7.5
HIGH
CVE-2024-0057
>= 7.2 and < 7.2.18
NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability
9.1
CRITICAL
CVE-2023-36013
>= 7.2 and < 7.2.17
PowerShell Information Disclosure Vulnerability
6.5
MEDIUM
CVE-2023-21538
all versions
.NET Denial of Service Vulnerability
7.5
HIGH
CVE-2022-41121
all versions
Windows Graphics Component Elevation of Privilege Vulnerability
7.8
HIGH
CVE-2022-41076
all versions
PowerShell Remote Code Execution Vulnerability
8.5
HIGH
CVE-2022-34716
>= 7.0 and < 7.0.12
.NET Spoofing Vulnerability
5.9
MEDIUM
CVE-2022-23267
>= 7.0 and < 7.0.11
.NET and Visual Studio Denial of Service Vulnerability
7.5
HIGH
CVE-2022-26788
>= 7.0 and < 7.0.10
PowerShell Elevation of Privilege Vulnerability
7.8
HIGH
CVE-2022-24512
>= 7.0 and < 7.0.9
.NET and Visual Studio Remote Code Execution Vulnerability
6.3
MEDIUM
CVE-2021-43896
>= 7.2 and < 7.2.1
Microsoft PowerShell Spoofing Vulnerability
5.5
MEDIUM
CVE-2021-41355
>= 7.1 and < 7.1.5
.NET Core and Visual Studio Information Disclosure Vulnerability
5.7
MEDIUM
CVE-2020-8927
>= 7.0 and < 7.0.9
A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a "one-sh
5.3
MEDIUM
CVE-2020-0951
>= 7.0 and < 7.0.8
<p>A security feature bypass vulnerability exists in Windows Defender Application Control (WDAC) which could allow an attacker to
6.7
MEDIUM
CVE-2020-1108
all versions
A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET F
7.5
HIGH
CVE-2018-8327
< 1.7.0
A remote code execution vulnerability exists in PowerShell Editor Services, aka "PowerShell Editor Services Remote Code Execution
9.8
CRITICAL
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin