Home/Product/microsoft windows server 2016
Product

microsoft windows server 2016

500 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-42825
< 10.0.14393.9140
Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-41095
< 10.0.14393.9140
Use after free in Data Deduplication allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-41089
< 10.0.14393.9140
Stack-based buffer overflow in Windows Netlogon allows an unauthorized attacker to execute code over a network.
9.8CRITICAL
 CVE-2026-40414
< 10.0.14393.9140
Windows TCP/IP Denial of Service Vulnerability
7.4HIGH
 CVE-2026-40413
< 10.0.14393.9140
Windows TCP/IP Denial of Service Vulnerability
7.4HIGH
 CVE-2026-40410
< 10.0.14393.9140
Use after free in Windows SMB Client allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-40408
< 10.0.14393.9140
Use after free in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-40407
< 10.0.14393.9140
Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-40406
< 10.0.14393.9140
Use after free in Windows TCP/IP allows an unauthorized attacker to disclose information over a network.
7.5HIGH
 CVE-2026-40403
< 10.0.14393.9140
Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to execute code locally.
8.8HIGH
 CVE-2026-40401
< 10.0.14393.9140
Windows TCP/IP Denial of Service Vulnerability
7.1HIGH
 CVE-2026-40399
< 10.0.14393.9140
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an authorized
7.8HIGH
 CVE-2026-40398
< 10.0.14393.9140
Heap-based buffer overflow in Windows Remote Desktop allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-40397
< 10.0.14393.9140
Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-40382
< 10.0.14393.9140
Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-40380
< 10.0.14393.9140
Heap-based buffer overflow in Volume Manager Extension Driver allows an authorized attacker to execute code with a physical attack
6.2MEDIUM
 CVE-2026-40377
< 10.0.14393.9140
Heap-based buffer overflow in Windows Cryptographic Services allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-35424
< 10.0.14393.9140
Missing release of memory after effective lifetime in Windows Internet Key Exchange (IKE) Protocol allows an unauthorized attacker
7.5HIGH
 CVE-2026-35423
< 10.0.14393.9140
Out-of-bounds read in Telnet Client allows an unauthorized attacker to disclose information over a network.
5.4MEDIUM
 CVE-2026-35422
< 10.0.14393.9140
Authentication bypass using an alternate path or channel in Windows TCP/IP allows an authorized attacker to bypass a security feat
6.5MEDIUM
 CVE-2026-35421
< 10.0.14393.9140
Heap-based buffer overflow in Windows GDI allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2026-35420
< 10.0.14393.9140
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-35416
< 10.0.14393.9140
Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorize
7.0HIGH
 CVE-2026-35415
< 10.0.14393.9140
Integer overflow or wraparound in Windows Storage Spaces Controller allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-34351
< 10.0.14393.9140
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an authorized
7.8HIGH
 CVE-2026-34347
< 10.0.14393.9140
Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-34345
< 10.0.14393.9140
Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorize
7.0HIGH
 CVE-2026-34344
< 10.0.14393.9140
Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorize
7.8HIGH
 CVE-2026-34343
< 10.0.14393.9140
Heap-based buffer overflow in Windows Application Identity (AppID) Subsystem allows an authorized attacker to elevate privileges l
7.8HIGH
 CVE-2026-34342
< 10.0.14393.9140
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Print Spooler Components al
7.0HIGH
 CVE-2026-34341
< 10.0.14393.9140
Double free in Windows Link-Layer Discovery Protocol (LLDP) allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-34339
< 10.0.14393.9140
Null pointer dereference in Windows LDAP - Lightweight Directory Access Protocol allows an authorized attacker to deny service loc
5.5MEDIUM
 CVE-2026-34338
< 10.0.14393.9140
Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-34336
< 10.0.14393.9140
Integer overflow or wraparound in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-34334
< 10.0.14393.9140
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an authorized
7.8HIGH
 CVE-2026-34333
< 10.0.14393.9140
Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-34331
< 10.0.14393.9140
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an aut
7.0HIGH
 CVE-2026-34330
< 10.0.14393.9140
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an aut
7.8HIGH
 CVE-2026-34329
< 10.0.14393.9140
Heap-based buffer overflow in Windows Message Queuing allows an unauthorized attacker to execute code over an adjacent network.
8.8HIGH
 CVE-2026-33838
< 10.0.14393.9140
Double free in Windows Message Queuing allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-33837
< 10.0.14393.9140
Heap-based buffer overflow in Windows TCP/IP allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-33834
< 10.0.14393.9140
Improper access control in Windows Event Logging Service allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-32209
< 10.0.14393.9140
Improper access control in Windows Filtering Platform (WFP) allows an authorized attacker to bypass a security feature locally.
4.4MEDIUM
 CVE-2026-32170
< 10.0.14393.9140
Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.
6.7MEDIUM
 CVE-2026-32161
< 10.0.14393.9140
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Native WiFi Miniport Driver
7.5HIGH
 CVE-2026-21530
< 10.0.14393.9140
Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.
6.7MEDIUM
 CVE-2026-33829
< 10.0.14393.9060
Exposure of sensitive information to an unauthorized actor in Windows Snipping Tool allows an unauthorized attacker to perform spo
4.3MEDIUM
 CVE-2026-33827
< 10.0.14393.9060
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an unauthoriz
8.1HIGH
 CVE-2026-33826
< 10.0.14393.9060
Improper input validation in Windows Active Directory allows an authorized attacker to execute code over an adjacent network.
8.0HIGH
 CVE-2026-33824
< 10.0.14393.9060
Double free in Windows IKE Extension allows an unauthorized attacker to execute code over a network.
9.8CRITICAL
 CVE-2026-33104
< 10.0.14393.9060
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an aut
7.0HIGH
 CVE-2026-33100
< 10.0.14393.9060
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-33099
< 10.0.14393.9060
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-33098
< 10.0.14393.9060
Use after free in Windows Container Isolation FS Filter Driver allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-32225
< 10.0.14393.9060
Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.
8.8HIGH
 CVE-2026-32217
< 10.0.14393.9060
Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to disclose information locally.
5.5MEDIUM
 CVE-2026-32214
< 10.0.14393.9060
Improper access control in Universal Plug and Play (upnp.dll) allows an authorized attacker to disclose information locally.
5.5MEDIUM
 CVE-2026-32212
< 10.0.14393.9060
Improper link resolution before file access ('link following') in Universal Plug and Play (upnp.dll) allows an authorized attacker
5.5MEDIUM
 CVE-2026-32202
< 10.0.14393.9060
Protection mechanism failure in Windows Shell allows an unauthorized attacker to perform spoofing over a network.
4.3MEDIUM
 CVE-2026-32183
< 10.0.14393.9060
Improper neutralization of special elements used in a command ('command injection') in Windows Snipping Tool allows an unauthorize
7.8HIGH
 CVE-2026-32164
< 10.0.14393.9060
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows User Interface Core allows
7.8HIGH
 CVE-2026-32157
< 10.0.14393.9060
Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network.
8.8HIGH
 CVE-2026-32156
< 10.0.14393.9060
Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an unauthorized attacker to execute code locally.
7.4HIGH
 CVE-2026-32151
< 10.0.14393.9060
Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose information
6.5MEDIUM
 CVE-2026-32150
< 10.0.14393.9060
Concurrent execution using shared resource with improper synchronization ('race condition') in Function Discovery Service (fdwsd.d
7.0HIGH
 CVE-2026-32149
< 10.0.14393.9060
Improper input validation in Windows Hyper-V allows an authorized attacker to execute code locally.
7.3HIGH
 CVE-2026-32093
< 10.0.14393.9060
Concurrent execution using shared resource with improper synchronization ('race condition') in Function Discovery Service (fdwsd.d
7.0HIGH
 CVE-2026-32091
< 10.0.14393.9060
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System all
8.4HIGH
 CVE-2026-32090
< 10.0.14393.9060
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Speech Brokered Api allows
7.8HIGH
 CVE-2026-32089
< 10.0.14393.9060
Use after free in Windows Speech Brokered Api allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-32087
< 10.0.14393.9060
Heap-based buffer overflow in Function Discovery Service (fdwsd.dll) allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-32086
< 10.0.14393.9060
Concurrent execution using shared resource with improper synchronization ('race condition') in Function Discovery Service (fdwsd.d
7.0HIGH
 CVE-2026-32085
< 10.0.14393.9060
Exposure of sensitive information to an unauthorized actor in Windows Remote Procedure Call allows an authorized attacker to discl
5.5MEDIUM
 CVE-2026-32084
< 10.0.14393.9060
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose info
5.5MEDIUM
 CVE-2026-32083
< 10.0.14393.9060
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SSDP Service allows an auth
7.0HIGH
 CVE-2026-32082
< 10.0.14393.9060
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SSDP Service allows an auth
7.0HIGH
 CVE-2026-32081
< 10.0.14393.9060
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose info
5.5MEDIUM
 CVE-2026-32080
< 10.0.14393.9060
Use after free in Windows WalletService allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-32079
< 10.0.14393.9060
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose info
5.5MEDIUM
 CVE-2026-32077
< 10.0.14393.9060
Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privi
7.8HIGH
 CVE-2026-32075
< 10.0.14393.9060
Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-32073
< 10.0.14393.9060
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-32072
< 10.0.14393.9060
Improper authentication in Windows Active Directory allows an unauthorized attacker to perform spoofing locally.
6.2MEDIUM
 CVE-2026-32071
< 10.0.14393.9060
Null pointer dereference in Windows Local Security Authority Subsystem Service (LSASS) allows an unauthorized attacker to deny ser
7.5HIGH
 CVE-2026-32070
< 10.0.14393.9060
Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-32068
< 10.0.14393.9060
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SSDP Service allows an auth
7.0HIGH
 CVE-2026-27930
< 10.0.14393.9060
Out-of-bounds read in Windows GDI allows an unauthorized attacker to disclose information locally.
5.5MEDIUM
 CVE-2026-27929
< 10.0.14393.9060
Time-of-check time-of-use (toctou) race condition in Windows LUAFV allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-27928
< 10.0.14393.9060
Improper input validation in Windows Hello allows an unauthorized attacker to bypass a security feature over a network.
8.7HIGH
 CVE-2026-27925
< 10.0.14393.9060
Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an unauthorized attacker to disclose information over
6.5MEDIUM
 CVE-2026-27923
< 10.0.14393.9060
Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-27922
< 10.0.14393.9060
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-27921
< 10.0.14393.9060
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an authorized
7.0HIGH
 CVE-2026-27920
< 10.0.14393.9060
Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privi
7.8HIGH
 CVE-2026-27919
< 10.0.14393.9060
Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privi
7.8HIGH
 CVE-2026-27917
< 10.0.14393.9060
Use after free in Windows WFP NDIS Lightweight Filter Driver (wfplwfs.sys) allows an authorized attacker to elevate privileges loc
7.0HIGH
 CVE-2026-27916
< 10.0.14393.9060
Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-27915
< 10.0.14393.9060
Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-27914
< 10.0.14393.9060
Improper access control in Microsoft Management Console allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-27913
< 10.0.14393.9060
Improper input validation in Windows BitLocker allows an unauthorized attacker to bypass a security feature locally.
7.7HIGH
 CVE-2026-27912
< 10.0.14393.9060
Improper authorization in Windows Kerberos allows an authorized attacker to elevate privileges over an adjacent network.
8.0HIGH
 CVE-2026-27911
< 10.0.14393.9060
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows User Interface Core allows
7.8HIGH
 CVE-2026-27910
< 10.0.14393.9060
Improper handling of insufficient permissions or privileges in Windows Installer allows an authorized attacker to elevate privileg
7.8HIGH
 CVE-2026-27909
< 10.0.14393.9060
Use after free in Microsoft Windows Search Component allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-27908
< 10.0.14393.9060
Use after free in Windows TDI Translation Driver (tdx.sys) allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-26183
< 10.0.14393.9060
Improper access control in Windows RPC API allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-26182
< 10.0.14393.9060
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-26180
< 10.0.14393.9060
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-26178
< 10.0.14393.9060
Integer size truncation in Windows Advanced Rasterization Platform (WARP) allows an unauthorized attacker to elevate privileges lo
8.8HIGH
 CVE-2026-26177
< 10.0.14393.9060
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-26176
< 10.0.14393.9060
Heap-based buffer overflow in Windows Client Side Caching driver (csc.sys) allows an authorized attacker to elevate privileges loc
7.8HIGH
 CVE-2026-26175
< 10.0.14393.9060
Use of uninitialized resource in Windows Boot Manager allows an unauthorized attacker to bypass a security feature with a physical
4.6MEDIUM
 CVE-2026-26174
< 10.0.14393.9060
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Server Update Service allow
7.0HIGH
 CVE-2026-26173
< 10.0.14393.9060
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver f
7.0HIGH
 CVE-2026-26170
< 10.0.14393.9060
Improper input validation in Microsoft PowerShell allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-26169
< 10.0.14393.9060
Buffer over-read in Windows Kernel Memory allows an authorized attacker to disclose information locally.
6.1MEDIUM
 CVE-2026-26168
< 10.0.14393.9060
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver f
7.8HIGH
 CVE-2026-26167
< 10.0.14393.9060
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Push Notifications allows a
8.8HIGH
 CVE-2026-26163
< 10.0.14393.9060
Double free in Windows Kernel allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-26162
< 10.0.14393.9060
Access of resource using incompatible type ('type confusion') in Windows OLE allows an authorized attacker to elevate privileges l
7.8HIGH
 CVE-2026-26160
< 10.0.14393.9060
Missing authentication for critical function in Windows Remote Desktop Licensing Service allows an authorized attacker to elevate
7.8HIGH
 CVE-2026-26159
< 10.0.14393.9060
Missing authentication for critical function in Windows Remote Desktop Licensing Service allows an authorized attacker to elevate
7.8HIGH
 CVE-2026-26156
< 10.0.14393.9060
Heap-based buffer overflow in Windows Hyper-V allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2026-26155
< 10.0.14393.9060
Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability
6.5MEDIUM
 CVE-2026-26154
< 10.0.14393.9060
Improper input validation in Windows Server Update Service allows an unauthorized attacker to perform tampering over a network.
7.5HIGH
 CVE-2026-26152
< 10.0.14393.9060
Insecure storage of sensitive information in Windows Cryptographic Services allows an authorized attacker to elevate privileges lo
7.0HIGH
 CVE-2026-26151
< 10.0.14393.9060
Insufficient ui warning of dangerous operations in Windows Remote Desktop allows an unauthorized attacker to perform spoofing over
7.1HIGH
 CVE-2026-23670
< 10.0.14393.9060
Untrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to bypass a sec
5.7MEDIUM
 CVE-2026-20928
< 10.0.14393.9060
Improper removal of sensitive information before storage or transfer in Windows Recovery Environment Agent allows an unauthorized
4.6MEDIUM
 CVE-2026-0390
< 10.0.14393.9060
Reliance on untrusted inputs in a security decision in Windows Boot Loader allows an authorized attacker to bypass a security feat
6.7MEDIUM
 CVE-2026-26128
< 10.0.14393.8957
Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-26111
< 10.0.14393.8957
Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code o
8.0HIGH
 CVE-2026-25190
< 10.0.14393.8957
Untrusted search path in Windows GDI allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2026-25188
< 10.0.14393.8957
Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to elevate privileges over an adjacent net
8.8HIGH
 CVE-2026-25187
< 10.0.14393.8957
Improper link resolution before file access ('link following') in Winlogon allows an authorized attacker to elevate privileges loc
7.8HIGH
 CVE-2026-25186
< 10.0.14393.8957
Exposure of sensitive information to an unauthorized actor in Windows Accessibility Infrastructure (ATBroker.exe) allows an author
5.5MEDIUM
 CVE-2026-25185
< 10.0.14393.8957
Exposure of sensitive information to an unauthorized actor in Windows Shell Link Processing allows an unauthorized attacker to per
5.3MEDIUM
 CVE-2026-25181
< 10.0.14393.8957
Out-of-bounds read in Windows GDI+ allows an unauthorized attacker to disclose information over a network.
7.5HIGH
 CVE-2026-25180
< 10.0.14393.8957
Out-of-bounds read in Microsoft Graphics Component allows an unauthorized attacker to disclose information locally.
5.5MEDIUM
 CVE-2026-25179
< 10.0.14393.8957
Improper validation of specified type of input in Windows Ancillary Function Driver for WinSock allows an authorized attacker to e
7.0HIGH
 CVE-2026-25178
< 10.0.14393.8957
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-25177
< 10.0.14393.8957
Improper restriction of names for files and other resources in Active Directory Domain Services allows an authorized attacker to e
8.8HIGH
 CVE-2026-25176
< 10.0.14393.8957
Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges local
7.8HIGH
 CVE-2026-25175
< 10.0.14393.8957
Out-of-bounds read in Windows NTFS allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-25174
< 10.0.14393.8957
Out-of-bounds read in Windows Extensible File Allocation allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-25173
< 10.0.14393.8957
Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code o
8.0HIGH
 CVE-2026-25172
< 10.0.14393.8957
Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code o
8.0HIGH
 CVE-2026-25171
< 10.0.14393.8957
Use after free in Windows Authentication Methods allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-25169
< 10.0.14393.8957
Divide by zero in Microsoft Graphics Component allows an unauthorized attacker to deny service locally.
6.2MEDIUM
 CVE-2026-25168
< 10.0.14393.8957
Null pointer dereference in Microsoft Graphics Component allows an unauthorized attacker to deny service locally.
6.2MEDIUM
 CVE-2026-25166
< 10.0.14393.8957
Deserialization of untrusted data in Windows System Image Manager allows an authorized attacker to execute code locally.
7.8HIGH
 CVE-2026-25165
< 10.0.14393.8957
Null pointer dereference in Windows Performance Counters allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-24297
< 10.0.14393.8957
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Kerberos allows an unauthor
6.5MEDIUM
 CVE-2026-24296
< 10.0.14393.8957
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Device Association Service
7.0HIGH
 CVE-2026-24295
< 10.0.14393.8957
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Device Association Service
7.0HIGH
 CVE-2026-24294
< 10.0.14393.8957
Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-24291
< 10.0.14393.8957
Incorrect permission assignment for critical resource in Windows Accessibility Infrastructure (ATBroker.exe) allows an authorized
7.8HIGH
 CVE-2026-24289
< 10.0.14393.8957
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-24285
< 10.0.14393.8957
Use after free in Windows Win32K allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-23674
< 10.0.14393.8957
Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over
7.5HIGH
 CVE-2026-23673
< 10.0.14393.8957
Out-of-bounds read in Windows Resilient File System (ReFS) allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-23672
< 10.0.14393.8957
Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2026-23671
< 10.0.14393.8957
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Bluetooth RFCOM Protocol Dr
7.0HIGH
 CVE-2026-23669
< 10.0.14393.8957
Use after free in RPC Runtime allows an authorized attacker to execute code over a network.
8.8HIGH
 CVE-2026-23668
< 10.0.14393.8957
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Graphics Component allows
7.0HIGH
 CVE-2026-21533
< 10.0.14393.8868
Improper privilege management in Windows Remote Desktop allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-21525
< 10.0.14393.8868
Null pointer dereference in Windows Remote Access Connection Manager allows an unauthorized attacker to deny service locally.
6.2MEDIUM
 CVE-2026-21519
< 10.0.14393.8868
Access of resource using incompatible type ('type confusion') in Desktop Window Manager allows an authorized attacker to elevate p
7.8HIGH
 CVE-2026-21513
< 10.0.14393.8868
Protection mechanism failure in MSHTML Framework allows an unauthorized attacker to bypass a security feature over a network.
8.8HIGH
 CVE-2026-21510
< 10.0.14393.8868
Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.
8.8HIGH
 CVE-2026-21508
< 10.0.14393.8868
Improper authentication in Windows Storage allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-21255
< 10.0.14393.8868
Improper access control in Windows Hyper-V allows an authorized attacker to bypass a security feature locally.
8.8HIGH
 CVE-2026-21253
< 10.0.14393.8868
Use after free in Mailslot File System allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2026-21251
< 10.0.14393.8868
Use after free in Windows Cluster Client Failover allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-21249
< 10.0.14393.8868
External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing locally.
3.3LOW
 CVE-2026-21248
< 10.0.14393.8868
Heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to execute code locally.
7.3HIGH
 CVE-2026-21247
< 10.0.14393.8868
Improper input validation in Windows Hyper-V allows an authorized attacker to execute code locally.
7.3HIGH
 CVE-2026-21246
< 10.0.14393.8868
Heap-based buffer overflow in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-21244
< 10.0.14393.8868
Heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to execute code locally.
7.3HIGH
 CVE-2026-21239
< 10.0.14393.8868
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-21238
< 10.0.14393.8868
Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges local
7.8HIGH
 CVE-2026-21236
< 10.0.14393.8868
Heap-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges lo
7.8HIGH
 CVE-2026-21235
< 10.0.14393.8868
Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
7.3HIGH
 CVE-2026-21231
< 10.0.14393.8868
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Kernel allows an authorized
7.8HIGH
 CVE-2026-21222
< 10.0.14393.8868
Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to disclose information locally.
5.5MEDIUM
 CVE-2026-20846
< 10.0.14393.8868
Buffer over-read in Windows GDI+ allows an unauthorized attacker to deny service over a network.
7.5HIGH
 CVE-2026-21265
< 10.0.14393.8783
Windows Secure Boot stores Microsoft certificates in the UEFI KEK and DB. These original certificates are approaching expiration,
6.4MEDIUM
 CVE-2026-20940
< 10.0.14393.8783
Heap-based buffer overflow in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-20939
< 10.0.14393.8783
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose info
5.5MEDIUM
 CVE-2026-20937
< 10.0.14393.8783
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose info
5.5MEDIUM
 CVE-2026-20936
< 10.0.14393.8783
Out-of-bounds read in Windows NDIS allows an authorized attacker to disclose information with a physical attack.
4.3MEDIUM
 CVE-2026-20934
< 10.0.14393.8783
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an author
7.5HIGH
 CVE-2026-20932
< 10.0.14393.8783
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose info
5.5MEDIUM
 CVE-2026-20931
< 10.0.14393.8783
External control of file name or path in Windows Telephony Service allows an authorized attacker to elevate privileges over an adj
8.0HIGH
 CVE-2026-20929
< 10.0.14393.8783
Improper access control in Windows HTTP.sys allows an authorized attacker to elevate privileges over a network.
7.5HIGH
 CVE-2026-20927
< 10.0.14393.8783
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an author
5.3MEDIUM
 CVE-2026-20926
< 10.0.14393.8783
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an author
7.5HIGH
 CVE-2026-20925
< 10.0.14393.8783
External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.
6.5MEDIUM
 CVE-2026-20922
< 10.0.14393.8783
Heap-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally.
7.8HIGH
 CVE-2026-20921
< 10.0.14393.8783
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an author
7.5HIGH
 CVE-2026-20919
< 10.0.14393.8783
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an author
7.5HIGH
 CVE-2026-20875
< 10.0.14393.8783
Null pointer dereference in Windows Local Security Authority Subsystem Service (LSASS) allows an unauthorized attacker to deny ser
7.5HIGH
 CVE-2026-20872
< 10.0.14393.8783
External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.
6.5MEDIUM
 CVE-2026-20869
< 10.0.14393.8783
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Local Session Manager (LSM)
7.0HIGH
 CVE-2026-20868
< 10.0.14393.8783
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code ove
8.8HIGH
 CVE-2026-20860
< 10.0.14393.8783
Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorize
7.8HIGH
 CVE-2026-20856
< 10.0.14393.8783
Improper input validation in Windows Server Update Service allows an unauthorized attacker to execute code over a network.
8.1HIGH
 CVE-2026-20852
< 10.0.14393.8783
Incorrect privilege assignment in Windows Hello allows an unauthorized attacker to perform tampering locally.
7.7HIGH
 CVE-2026-20849
< 10.0.14393.8783
Reliance on untrusted inputs in a security decision in Windows Kerberos allows an authorized attacker to elevate privileges over a
7.5HIGH
 CVE-2026-20848
< 10.0.14393.8783
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an author
7.5HIGH
 CVE-2026-20847
< 10.0.14393.8783
Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to perform spoofing over
6.5MEDIUM
 CVE-2026-20844
< 10.0.14393.8783
Use after free in Windows Clipboard Server allows an unauthorized attacker to elevate privileges locally.
7.4HIGH
 CVE-2026-20843
< 10.0.14393.8783
Improper access control in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to elevate privileges lo
7.8HIGH
 CVE-2026-20840
< 10.0.14393.8783
Heap-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally.
7.8HIGH
 CVE-2026-20839
< 10.0.14393.8783
Improper access control in Windows Client-Side Caching (CSC) Service allows an authorized attacker to disclose information locally
5.5MEDIUM
 CVE-2026-20836
< 10.0.14393.8783
Concurrent execution using shared resource with improper synchronization ('race condition') in Graphics Kernel allows an authorize
7.0HIGH
 CVE-2026-20834
< 10.0.14393.8783
Absolute path traversal in Windows Shell allows an unauthorized attacker to perform spoofing with a physical attack.
4.6MEDIUM
 CVE-2026-20833
< 10.0.14393.8783
Use of a broken or risky cryptographic algorithm in Windows Kerberos allows an authorized attacker to disclose information locally
5.5MEDIUM
 CVE-2026-20832
< 10.0.14393.8783
Windows Remote Procedure Call Interface Definition Language (IDL) Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2026-20831
< 10.0.14393.8783
Time-of-check time-of-use (toctou) race condition in Windows Ancillary Function Driver for WinSock allows an authorized attacker t
7.8HIGH
 CVE-2026-20828
< 10.0.14393.8783
Out-of-bounds read in Windows Internet Connection Sharing (ICS) allows an unauthorized attacker to disclose information with a phy
4.6MEDIUM
 CVE-2026-20827
< 10.0.14393.8783
Exposure of sensitive information to an unauthorized actor in Tablet Windows User Interface (TWINUI) Subsystem allows an authorize
5.5MEDIUM
 CVE-2026-20826
< 10.0.14393.8783
Concurrent execution using shared resource with improper synchronization ('race condition') in Tablet Windows User Interface (TWIN
7.8HIGH
 CVE-2026-20824
< 10.0.14393.8783
Protection mechanism failure in Windows Remote Assistance allows an unauthorized attacker to bypass a security feature locally.
5.5MEDIUM
 CVE-2026-20823
< 10.0.14393.8783
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose info
5.5MEDIUM
 CVE-2026-20822
< 10.0.14393.8783
Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-20821
< 10.0.14393.8783
Exposure of sensitive information to an unauthorized actor in Windows Remote Procedure Call allows an unauthorized attacker to dis
6.2MEDIUM
 CVE-2026-20820
< 10.0.14393.8783
Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-20818
< 10.0.14393.8783
Insertion of sensitive information into log file in Windows Kernel allows an unauthorized attacker to disclose information locally
6.2MEDIUM
 CVE-2026-20816
< 10.0.14393.8783
Time-of-check time-of-use (toctou) race condition in Windows Installer allows an authorized attacker to elevate privileges locally
7.8HIGH
 CVE-2026-20814
< 10.0.14393.8783
Concurrent execution using shared resource with improper synchronization ('race condition') in Graphics Kernel allows an authorize
7.0HIGH
 CVE-2026-20812
< 10.0.14393.8783
Improper input validation in Windows LDAP - Lightweight Directory Access Protocol allows an authorized attacker to perform tamperi
6.5MEDIUM
 CVE-2026-20809
< 10.0.14393.8783
Time-of-check time-of-use (toctou) race condition in Windows Kernel Memory allows an authorized attacker to elevate privileges loc
7.8HIGH
 CVE-2026-20805
< 10.0.14393.8783
Exposure of sensitive information to an unauthorized actor in Desktop Windows Manager allows an authorized attacker to disclose in
5.5MEDIUM
 CVE-2026-20804
< 10.0.14393.8783
Incorrect privilege assignment in Windows Hello allows an unauthorized attacker to perform tampering locally.
7.7HIGH
 CVE-2026-0386
< 10.0.14393.8783
Improper access control in Windows Deployment Services allows an unauthorized attacker to execute code over an adjacent network.
7.5HIGH
 CVE-2025-64680
< 10.0.14393.8519
Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-64679
< 10.0.14393.8519
Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-64678
< 10.0.14393.8594
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code ove
8.8HIGH
 CVE-2025-64661
< 10.0.14393.8688
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Shell allows an authorized
7.8HIGH
 CVE-2025-62573
< 10.0.14393.8688
Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2025-62571
< 10.0.14393.8688
Improper input validation in Windows Installer allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-62567
< 10.0.14393.8688
Integer underflow (wrap or wraparound) in Windows Hyper-V allows an authorized attacker to deny service over a network.
5.3MEDIUM
 CVE-2025-62565
< 10.0.14393.8688
Use after free in Windows Shell allows an authorized attacker to elevate privileges locally.
7.3HIGH
 CVE-2025-62549
< 10.0.14393.8688
Untrusted pointer dereference in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code
8.8HIGH
 CVE-2025-62474
< 10.0.14393.8688
Improper access control in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-62473
< 10.0.14393.8688
Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over
6.5MEDIUM
 CVE-2025-62472
< 10.0.14393.8688
Use of uninitialized resource in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges loca
7.8HIGH
 CVE-2025-62470
< 10.0.14393.8688
Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-62466
< 10.0.14393.8688
Null pointer dereference in Windows Client-Side Caching (CSC) Service allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-62458
< 10.0.14393.8688
Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-62455
< 10.0.14393.8688
Improper input validation in Windows Message Queuing allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-59517
< 10.0.14393.8688
Improper access control in Windows Storage VSP Driver allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-54100
< 10.0.14393.8688
Improper neutralization of special elements used in a command ('command injection') in Windows PowerShell allows an unauthorized a
7.8HIGH
 CVE-2025-62452
< 10.0.14393.8594
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over
8.0HIGH
 CVE-2025-62217
< 10.0.14393.8594
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver f
7.0HIGH
 CVE-2025-62213
< 10.0.14393.8594
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2025-62209
< 10.0.14393.8519
Insertion of sensitive information into log file in Windows License Manager allows an authorized attacker to disclose information
5.5MEDIUM
 CVE-2025-62208
< 10.0.14393.8519
Insertion of sensitive information into log file in Windows License Manager allows an authorized attacker to disclose information
5.5MEDIUM
 CVE-2025-60724
< 10.0.14393.8594
Heap-based buffer overflow in Microsoft Graphics Component allows an unauthorized attacker to execute code over a network.
9.8CRITICAL
 CVE-2025-60720
< 10.0.14393.8594
Buffer over-read in Windows TDX.sys allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-60719
< 10.0.14393.8594
Untrusted pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges
7.0HIGH
 CVE-2025-60715
< 10.0.14393.8594
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over
8.0HIGH
 CVE-2025-60714
< 10.0.14393.8594
Heap-based buffer overflow in Windows OLE allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-60713
< 10.0.14393.8594
Untrusted pointer dereference in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to elevate privile
7.8HIGH
 CVE-2025-60709
< 10.0.14393.8594
Out-of-bounds read in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-60708
< 10.0.14393.8594
Untrusted pointer dereference in Storvsp.sys Driver allows an authorized attacker to deny service locally.
6.5MEDIUM
 CVE-2025-60706
< 10.0.14393.8594
Out-of-bounds read in Windows Hyper-V allows an authorized attacker to disclose information locally.
5.5MEDIUM
 CVE-2025-60705
< 10.0.14393.8594
Improper access control in Windows Client-Side Caching (CSC) Service allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-60704
< 10.0.14393.8594
Missing cryptographic step in Windows Kerberos allows an unauthorized attacker to elevate privileges over a network.
7.5HIGH
 CVE-2025-60703
< 10.0.14393.8594
Untrusted pointer dereference in Windows Remote Desktop allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-59514
< 10.0.14393.8594
Improper privilege management in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-59513
< 10.0.14393.8594
Out-of-bounds read in Windows Bluetooth RFCOM Protocol Driver allows an authorized attacker to disclose information locally.
5.5MEDIUM
 CVE-2025-59512
< 10.0.14393.8594
Improper access control in Customer Experience Improvement Program (CEIP) allows an authorized attacker to elevate privileges loca
7.8HIGH
 CVE-2025-59510
< 10.0.14393.8594
Improper link resolution before file access ('link following') in Windows Routing and Remote Access Service (RRAS) allows an autho
5.5MEDIUM
 CVE-2025-59508
< 10.0.14393.8594
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Speech allows an authorized
7.0HIGH
 CVE-2025-59507
< 10.0.14393.8594
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Speech allows an authorized
7.0HIGH
 CVE-2025-59506
< 10.0.14393.8594
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows DirectX allows an authorize
7.0HIGH
 CVE-2025-59505
< 10.0.14393.8594
Double free in Windows Smart Card allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-59295
<= 10.0.14393.8519
Heap-based buffer overflow in Internet Explorer allows an unauthorized attacker to execute code over a network.
8.8HIGH
 CVE-2025-59294
< 10.0.14393.8519
Exposure of sensitive information to an unauthorized actor in Windows Taskbar Live allows an unauthorized attacker to disclose inf
2.1LOW
 CVE-2025-59287
< 10.0.14393.8524
Deserialization of untrusted data in Windows Server Update Service allows an unauthorized attacker to execute code over a network.
9.8CRITICAL
 CVE-2025-59282
< 10.0.14393.8519
Concurrent execution using shared resource with improper synchronization ('race condition') in Inbox COM Objects allows an unautho
7.0HIGH
 CVE-2025-59280
<= 10.0.14393.8519
Improper authentication in Windows SMB Client allows an unauthorized attacker to perform tampering over a network.
3.1LOW
 CVE-2025-59278
< 10.0.14393.8519
Improper validation of specified type of input in Windows Authentication Methods allows an authorized attacker to elevate privileg
7.8HIGH
 CVE-2025-59277
< 10.0.14393.8519
Improper validation of specified type of input in Windows Authentication Methods allows an authorized attacker to elevate privileg
7.8HIGH
 CVE-2025-59275
< 10.0.14393.8519
Improper validation of specified type of input in Windows Authentication Methods allows an authorized attacker to elevate privileg
7.8HIGH
 CVE-2025-59260
<= 10.0.14393.8519
Exposure of sensitive information to an unauthorized actor in Microsoft Failover Cluster Virtual Driver allows an authorized attac
5.5MEDIUM
 CVE-2025-59259
<= 10.0.14393.8519
Improper validation of specified type of input in Windows Local Session Manager (LSM) allows an authorized attacker to deny servic
6.5MEDIUM
 CVE-2025-59258
<= 10.0.14393.8519
Insertion of sensitive information into log file in Active Directory Federation Services allows an unauthorized attacker to disclo
6.2MEDIUM
 CVE-2025-59254
<= 10.0.14393.8519
Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-59253
<= 10.0.14393.8519
Improper access control in Microsoft Windows Search Component allows an authorized attacker to deny service locally.
5.5MEDIUM
 CVE-2025-59244
<= 10.0.14393.8519
External control of file name or path in Windows Core Shell allows an unauthorized attacker to perform spoofing over a network.
6.5MEDIUM
 CVE-2025-59242
<= 10.0.14393.8519
Heap-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges lo
7.8HIGH
 CVE-2025-59230
<= 10.0.14393.8519
Improper access control in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-59214
<= 10.0.14393.8519
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spo
6.5MEDIUM
 CVE-2025-59211
<= 10.0.14393.8519
Exposure of sensitive information to an unauthorized actor in Windows Push Notification Core allows an authorized attacker to disc
5.5MEDIUM
 CVE-2025-59209
<= 10.0.14393.8519
Exposure of sensitive information to an unauthorized actor in Windows Push Notification Core allows an authorized attacker to disc
5.5MEDIUM
 CVE-2025-59208
<= 10.0.14393.8519
Out-of-bounds read in Windows MapUrlToZone allows an unauthorized attacker to disclose information over a network.
7.1HIGH
 CVE-2025-59205
<= 10.0.14393.8519
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Graphics Component allows
7.0HIGH
 CVE-2025-59203
<= 10.0.14393.8519
Insertion of sensitive information into log file in Windows StateRepository API allows an authorized attacker to disclose informat
5.5MEDIUM
 CVE-2025-59202
<= 10.0.14393.8519
Use after free in Windows Remote Desktop Services allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2025-59201
<= 10.0.14393.8519
Improper access control in Network Connection Status Indicator (NCSI) allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-59200
<= 10.0.14393.8519
Concurrent execution using shared resource with improper synchronization ('race condition') in Data Sharing Service Client allows
7.7HIGH
 CVE-2025-59198
< 10.0.14393.8519
Improper input validation in Microsoft Windows Search Component allows an authorized attacker to deny service locally.
5.0MEDIUM
 CVE-2025-59197
<= 10.0.14393.8519
Insertion of sensitive information into log file in Windows ETL Channel allows an authorized attacker to disclose information loca
5.5MEDIUM
 CVE-2025-59196
<= 10.0.14393.8519
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SSDP Service allows an auth
7.0HIGH
 CVE-2025-59192
<= 10.0.14393.8519
Buffer over-read in Storport.sys Driver allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-59190
<= 10.0.14393.8519
Improper input validation in Microsoft Windows Search Component allows an unauthorized attacker to deny service locally.
5.5MEDIUM
 CVE-2025-59188
< 10.0.14393.8519
Exposure of sensitive information to an unauthorized actor in Windows Failover Cluster allows an authorized attacker to disclose i
5.5MEDIUM
 CVE-2025-59187
< 10.0.14393.8519
Improper input validation in Windows Kernel allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-59186
<= 10.0.14393.8519
Exposure of sensitive information to an unauthorized actor in Windows Kernel allows an authorized attacker to disclose information
5.5MEDIUM
 CVE-2025-59185
<= 10.0.14393.8519
External control of file name or path in Windows Core Shell allows an unauthorized attacker to perform spoofing over a network.
6.5MEDIUM
 CVE-2025-59184
<= 10.0.14393.8519
Exposure of sensitive information to an unauthorized actor in Windows High Availability Services allows an authorized attacker to
5.5MEDIUM
 CVE-2025-58739
<= 10.0.14393.8519
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spo
6.5MEDIUM
 CVE-2025-58737
<= 10.0.14393.8519
Use after free in Windows Remote Desktop allows an unauthorized attacker to execute code locally.
7.0HIGH
 CVE-2025-58736
<= 10.0.14393.8519
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
7.0HIGH
 CVE-2025-58735
<= 10.0.14393.8519
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
7.0HIGH
 CVE-2025-58734
<= 10.0.14393.8519
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
7.0HIGH
 CVE-2025-58733
<= 10.0.14393.8519
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
7.0HIGH
 CVE-2025-58732
<= 10.0.14393.8519
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
7.0HIGH
 CVE-2025-58730
<= 10.0.14393.8519
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
7.0HIGH
 CVE-2025-58729
< 10.0.14393.8519
Improper validation of specified type of input in Windows Local Session Manager (LSM) allows an authorized attacker to deny servic
6.5MEDIUM
 CVE-2025-58726
<= 10.0.14393.8519
Improper access control in Windows SMB Server allows an authorized attacker to elevate privileges over a network.
7.5HIGH
 CVE-2025-58725
<= 10.0.14393.8519
Heap-based buffer overflow in Windows COM allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2025-58722
< 10.0.14393.8519
Heap-based buffer overflow in Windows DWM allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-58719
< 10.0.14393.8519
Use after free in Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to elevate privileges locally.
4.7MEDIUM
 CVE-2025-58718
<= 10.0.14393.8519
Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network.
8.8HIGH
 CVE-2025-58717
<= 10.0.14393.8519
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information ove
6.5MEDIUM
 CVE-2025-58716
<= 10.0.14393.8519
Improper input validation in Microsoft Windows Speech allows an authorized attacker to elevate privileges locally.
8.8HIGH
 CVE-2025-58715
<= 10.0.14393.8519
Integer overflow or wraparound in Microsoft Windows Speech allows an authorized attacker to elevate privileges locally.
8.8HIGH
 CVE-2025-58714
<= 10.0.14393.8519
Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges local
7.8HIGH
 CVE-2025-55701
<= 10.0.14393.8519
Improper validation of specified type of input in Microsoft Windows allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-55700
<= 10.0.14393.8519
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information ove
6.5MEDIUM
 CVE-2025-55699
<= 10.0.14393.8519
Exposure of sensitive information to an unauthorized actor in Windows Kernel allows an authorized attacker to disclose information
5.5MEDIUM
 CVE-2025-55695
< 10.0.14393.8519
Out-of-bounds read in Windows WLAN Auto Config Service allows an authorized attacker to disclose information locally.
5.5MEDIUM
 CVE-2025-55692
< 10.0.14393.8519
Improper input validation in Windows Error Reporting allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-55687
< 10.0.14393.8519
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Resilient File System (ReFS
7.4HIGH
 CVE-2025-55683
< 10.0.14393.8519
Exposure of sensitive information to an unauthorized actor in Windows Kernel allows an authorized attacker to disclose information
5.5MEDIUM
 CVE-2025-55678
<= 10.0.14393.8519
Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2025-55338
< 10.0.14393.8519
Missing Ability to Patch ROM Code in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physica
6.1MEDIUM
 CVE-2025-55335
< 10.0.14393.8519
Use after free in Windows NTFS allows an unauthorized attacker to elevate privileges locally.
7.4HIGH
 CVE-2025-55333
< 10.0.14393.8519
Incomplete comparison with missing factors in Windows BitLocker allows an unauthorized attacker to bypass a security feature with
6.1MEDIUM
 CVE-2025-55328
< 10.0.14393.8519
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Hyper-V allows an authorize
7.8HIGH
 CVE-2025-55325
< 10.0.14393.8519
Buffer over-read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
5.5MEDIUM
 CVE-2025-50152
<= 10.0.14393.8519
Out-of-bounds read in Windows Kernel allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-25004
<= 10.0.14393.8519
Improper access control in Microsoft PowerShell allows an authorized attacker to elevate privileges locally.
7.3HIGH
 CVE-2025-24990
<= 10.0.14393.8519
Microsoft is aware of vulnerabilities in the third party Agere Modem driver that ships natively with supported Windows operating s
7.8HIGH
 CVE-2025-24052
<= 10.0.14393.8519
Microsoft is aware of vulnerabilities in the third party Agere Modem driver that ships natively with supported Windows operating s
7.8HIGH
 CVE-2025-55234
< 10.0.14393.8422
SMB Server might be susceptible to relay attacks depending on the configuration. An attacker who successfully exploited these vuln
8.8HIGH
 CVE-2025-55226
< 10.0.14393.8422
Concurrent execution using shared resource with improper synchronization ('race condition') in Graphics Kernel allows an authorize
6.7MEDIUM
 CVE-2025-55225
< 10.0.14393.8422
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information ove
6.5MEDIUM
 CVE-2025-54918
< 10.0.14393.8422
Improper authentication in Windows NTLM allows an authorized attacker to elevate privileges over a network.
8.8HIGH
 CVE-2025-54917
< 10.0.14393.8422
Protection mechanism failure in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network.
4.3MEDIUM
 CVE-2025-54916
< 10.0.14393.8422
Stack-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally.
7.8HIGH
 CVE-2025-54915
< 10.0.14393.8422
Access of resource using incompatible type ('type confusion') in Windows Defender Firewall Service allows an authorized attacker t
6.7MEDIUM
 CVE-2025-54913
< 10.0.14393.8422
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows UI XAML Maps MapControlSett
7.8HIGH
 CVE-2025-54912
< 10.0.14393.8422
Use after free in Windows BitLocker allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-54911
< 10.0.14393.8422
Use after free in Windows BitLocker allows an authorized attacker to elevate privileges locally.
7.3HIGH
 CVE-2025-54895
< 10.0.14393.8422
Integer overflow or wraparound in Windows SPNEGO Extended Negotiation allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-54894
< 10.0.14393.8422
Local Security Authority Subsystem Service Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2025-54116
< 10.0.14393.8422
Improper access control in Windows MultiPoint Services allows an authorized attacker to elevate privileges locally.
7.3HIGH
 CVE-2025-54114
< 10.0.14393.8422
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Connected Devices Platform
7.0HIGH
 CVE-2025-54113
< 10.0.14393.8422
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code ove
8.8HIGH
 CVE-2025-54112
< 10.0.14393.8422
Use after free in Microsoft Virtual Hard Drive allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2025-54111
< 10.0.14393.8422
Use after free in Windows UI XAML Phone DatePickerFlyout allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-54110
< 10.0.14393.8422
Integer overflow or wraparound in Windows Kernel allows an authorized attacker to elevate privileges locally.
8.8HIGH
 CVE-2025-54109
< 10.0.14393.8422
Access of resource using incompatible type ('type confusion') in Windows Defender Firewall Service allows an authorized attacker t
6.7MEDIUM
 CVE-2025-54107
< 10.0.14393.8422
Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over
4.3MEDIUM
 CVE-2025-54106
< 10.0.14393.8422
Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code
8.8HIGH
 CVE-2025-54104
< 10.0.14393.8422
Access of resource using incompatible type ('type confusion') in Windows Defender Firewall Service allows an authorized attacker t
6.7MEDIUM
 CVE-2025-54102
< 10.0.14393.8422
Use after free in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-54101
< 10.0.14393.8422
Use after free in Windows SMBv3 Client allows an authorized attacker to execute code over a network.
4.8MEDIUM
 CVE-2025-54099
< 10.0.14393.8422
Stack-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges l
7.0HIGH
 CVE-2025-54098
< 10.0.14393.8422
Improper access control in Windows Hyper-V allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-54097
< 10.0.14393.8422
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information ove
6.5MEDIUM
 CVE-2025-54096
< 10.0.14393.8422
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information ove
6.5MEDIUM
 CVE-2025-54095
< 10.0.14393.8422
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information ove
6.5MEDIUM
 CVE-2025-54094
< 10.0.14393.8422
Access of resource using incompatible type ('type confusion') in Windows Defender Firewall Service allows an authorized attacker t
6.7MEDIUM
 CVE-2025-54093
< 10.0.14393.8422
Time-of-check time-of-use (toctou) race condition in Windows TCP/IP allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2025-54091
< 10.0.14393.8422
Integer overflow or wraparound in Windows Hyper-V allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-53810
< 10.0.14393.8422
Access of resource using incompatible type ('type confusion') in Windows Defender Firewall Service allows an authorized attacker t
6.7MEDIUM
 CVE-2025-53808
< 10.0.14393.8422
Access of resource using incompatible type ('type confusion') in Windows Defender Firewall Service allows an authorized attacker t
6.7MEDIUM
 CVE-2025-53806
< 10.0.14393.8422
Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over
6.5MEDIUM
 CVE-2025-53804
< 10.0.14393.8422
Exposure of sensitive information to an unauthorized actor in Windows Kernel allows an authorized attacker to disclose information
5.5MEDIUM
 CVE-2025-53803
< 10.0.14393.8422
Generation of error message containing sensitive information in Windows Kernel allows an authorized attacker to disclose informati
5.5MEDIUM
 CVE-2025-53801
< 10.0.14393.8422
Untrusted pointer dereference in Windows DWM allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-53800
< 10.0.14393.8422
No cwe for this issue in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-53799
< 10.0.14393.8422
Use of uninitialized resource in Windows Imaging Component allows an unauthorized attacker to disclose information locally.
5.5MEDIUM
 CVE-2025-53798
< 10.0.14393.8422
Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over
6.5MEDIUM
 CVE-2025-53797
< 10.0.14393.8422
Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over
6.5MEDIUM
 CVE-2025-53796
< 10.0.14393.8422
Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over
6.5MEDIUM
 CVE-2025-49734
< 10.0.14393.8422
Improper restriction of communication channel to intended endpoints in Windows PowerShell allows an authorized attacker to elevate
7.0HIGH
 CVE-2025-55231
< 10.0.14393.8416
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Storage allows an unauthori
7.5HIGH
 CVE-2025-55230
< 10.0.14393.8246
Untrusted pointer dereference in Windows MBT Transport driver allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-55229
< 10.0.14393.8066
Improper verification of cryptographic signature in Windows Certificates allows an unauthorized attacker to perform spoofing over
5.3MEDIUM
 CVE-2025-53789
< 10.0.14393.8246
Missing authentication for critical function in Windows StateRepository API allows an authorized attacker to elevate privileges lo
7.8HIGH
 CVE-2025-53778
< 10.0.14393.8330
Improper authentication in Windows NTLM allows an authorized attacker to elevate privileges over a network.
8.8HIGH
 CVE-2025-53766
< 10.0.14393.8330
Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network.
9.8CRITICAL
 CVE-2025-53726
< 10.0.14393.8330
Access of resource using incompatible type ('type confusion') in Windows Push Notifications allows an authorized attacker to eleva
7.8HIGH
 CVE-2025-53725
< 10.0.14393.8330
Access of resource using incompatible type ('type confusion') in Windows Push Notifications allows an authorized attacker to eleva
7.8HIGH
 CVE-2025-53724
< 10.0.14393.8330
Access of resource using incompatible type ('type confusion') in Windows Push Notifications allows an authorized attacker to eleva
7.8HIGH
 CVE-2025-53723
< 10.0.14393.8330
Numeric truncation error in Windows Hyper-V allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-53722
< 10.0.14393.8330
Uncontrolled resource consumption in Windows Remote Desktop Services allows an unauthorized attacker to deny service over a networ
7.5HIGH
 CVE-2025-53720
< 10.0.14393.8330
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over
8.0HIGH
 CVE-2025-53719
< 10.0.14393.8330
Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose inform
5.7MEDIUM
 CVE-2025-53718
< 10.0.14393.8330
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2025-53155
< 10.0.14393.8330
Heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-53154
< 10.0.14393.8330
Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges loca
7.8HIGH
 CVE-2025-53153
< 10.0.14393.8330
Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose inform
5.7MEDIUM
 CVE-2025-53152
< 10.0.14393.8330
Use after free in Desktop Windows Manager allows an authorized attacker to execute code locally.
7.8HIGH
 CVE-2025-53149
< 10.0.14393.8330
Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver allows an authorized attacker to elevate privileges locall
7.8HIGH
 CVE-2025-53148
< 10.0.14393.8330
Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose inform
5.7MEDIUM
 CVE-2025-53147
< 10.0.14393.8330
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2025-53145
< 10.0.14393.8330
Access of resource using incompatible type ('type confusion') in Windows Message Queuing allows an authorized attacker to execute
8.8HIGH
 CVE-2025-53144
< 10.0.14393.8330
Access of resource using incompatible type ('type confusion') in Windows Message Queuing allows an authorized attacker to execute
8.8HIGH
 CVE-2025-53143
< 10.0.14393.8330
Access of resource using incompatible type ('type confusion') in Windows Message Queuing allows an authorized attacker to execute
8.8HIGH
 CVE-2025-53141
< 10.0.14393.8330
Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges loca
7.8HIGH
 CVE-2025-53140
< 10.0.14393.8330
Use after free in Kernel Transaction Manager allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2025-53138
< 10.0.14393.8330
Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose inform
5.7MEDIUM
 CVE-2025-53137
< 10.0.14393.8330
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2025-53136
< 10.0.14393.8330
Exposure of sensitive information to an unauthorized actor in Windows NT OS Kernel allows an authorized attacker to disclose infor
5.5MEDIUM
 CVE-2025-53135
< 10.0.14393.8330
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows DirectX allows an authorize
7.0HIGH
 CVE-2025-53134
< 10.0.14393.8330
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver f
7.0HIGH
 CVE-2025-53132
< 10.0.14393.8330
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an aut
7.8HIGH
 CVE-2025-50177
< 10.0.14393.8330
Use after free in Windows Message Queuing allows an unauthorized attacker to execute code over a network.
8.1HIGH
 CVE-2025-50173
< 10.0.14393.8330
Weak authentication in Windows Installer allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-50167
< 10.0.14393.8330
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Hyper-V allows an authorize
7.0HIGH
 CVE-2025-50166
< 10.0.14393.8330
Integer overflow or wraparound in Windows Distributed Transaction Coordinator allows an authorized attacker to disclose informatio
6.5MEDIUM
 CVE-2025-50164
< 10.0.14393.8330
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over
8.0HIGH
 CVE-2025-50163
< 10.0.14393.8330
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code ove
8.8HIGH
 CVE-2025-50162
< 10.0.14393.8330
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over
8.0HIGH
 CVE-2025-50161
< 10.0.14393.8330
Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.
7.3HIGH
 CVE-2025-50160
< 10.0.14393.8330
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over
8.0HIGH
 CVE-2025-50159
< 10.0.14393.8330
Use after free in Remote Access Point-to-Point Protocol (PPP) EAP-TLS allows an authorized attacker to elevate privileges locally.
7.3HIGH
 CVE-2025-50158
< 10.0.14393.8330
Time-of-check time-of-use (toctou) race condition in Windows NTFS allows an unauthorized attacker to disclose information locally.
7.0HIGH
 CVE-2025-50157
< 10.0.14393.8330
Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose inform
5.7MEDIUM
 CVE-2025-50156
< 10.0.14393.8330
Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose inform
5.7MEDIUM
 CVE-2025-50155
< 10.0.14393.8330
Access of resource using incompatible type ('type confusion') in Windows Push Notifications allows an authorized attacker to eleva
7.8HIGH
 CVE-2025-50154
< 10.0.14393.8330
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spo
6.5MEDIUM
 CVE-2025-50153
< 10.0.14393.8330
Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-49762
< 10.0.14393.8330
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver f
7.0HIGH
 CVE-2025-49761
< 10.0.14393.8330
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-49757
< 10.0.14393.8246
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code ove
8.8HIGH
 CVE-2025-49751
< 10.0.14393.8330
Missing synchronization in Windows Hyper-V allows an authorized attacker to deny service over an adjacent network.
6.8MEDIUM
 CVE-2025-49743
< 10.0.14393.8330
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Graphics Component allows
6.7MEDIUM
 CVE-2025-48807
< 10.0.14393.8246
Improper restriction of communication channel to intended endpoints in Windows Hyper-V allows an authorized attacker to execute co
6.7MEDIUM
 CVE-2025-49760
< 10.0.14393.8246
External control of file name or path in Windows Storage allows an authorized attacker to perform spoofing over a network.
3.5LOW
 CVE-2025-49753
< 10.0.14393.8246
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code ove
8.8HIGH
 CVE-2025-49744
< 10.0.14393.8246
Heap-based buffer overflow in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2025-49742
< 10.0.14393.8246
Integer overflow or wraparound in Microsoft Graphics Component allows an authorized attacker to execute code locally.
7.8HIGH
 CVE-2025-49740
< 10.0.14393.8246
Protection mechanism failure in Windows SmartScreen allows an unauthorized attacker to bypass a security feature over a network.
8.8HIGH
 CVE-2025-49735
< 10.0.14393.8148
Use after free in Windows KDC Proxy Service (KPSSVC) allows an unauthorized attacker to execute code over a network.
8.1HIGH
 CVE-2025-49732
< 10.0.14393.8246
Heap-based buffer overflow in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-49730
< 10.0.14393.8246
Time-of-check time-of-use (toctou) race condition in Microsoft Windows QoS scheduler allows an authorized attacker to elevate priv
7.8HIGH
 CVE-2025-49729
< 10.0.14393.8246
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code ove
8.8HIGH
 CVE-2025-49727
< 10.0.14393.8246
Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2025-49726
< 10.0.14393.8246
Use after free in Windows Notification allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-49725
< 10.0.14393.8246
Use after free in Windows Notification allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-49722
< 10.0.14393.8246
Uncontrolled resource consumption in Windows Print Spooler Components allows an authorized attacker to deny service over an adjace
5.7MEDIUM
 CVE-2025-49721
< 10.0.14393.8246
Heap-based buffer overflow in Windows Fast FAT Driver allows an unauthorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-49716
< 10.0.14393.8246
Uncontrolled resource consumption in Windows Netlogon allows an unauthorized attacker to deny service over a network.
7.5HIGH
 CVE-2025-49691
< 10.0.14393.8246
Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over an adjacent network.
8.0HIGH
 CVE-2025-49689
< 10.0.14393.8246
Integer overflow or wraparound in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-49688
< 10.0.14393.8246
Double free in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
8.8HIGH
 CVE-2025-49687
< 10.0.14393.8246
Out-of-bounds read in Microsoft Input Method Editor (IME) allows an authorized attacker to elevate privileges locally.
8.8HIGH
 CVE-2025-49686
< 10.0.14393.8246
Null pointer dereference in Windows TCP/IP allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-49684
< 10.0.14393.8246
Buffer over-read in Storage Port Driver allows an authorized attacker to disclose information locally.
5.5MEDIUM
 CVE-2025-49683
< 10.0.14393.8246
Integer overflow or wraparound in Virtual Hard Disk (VHDX) allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-49681
< 10.0.14393.8246
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information ove
6.5MEDIUM
 CVE-2025-49680
< 10.0.14393.8246
Improper link resolution before file access ('link following') in Windows Performance Recorder allows an authorized attacker to de
7.3HIGH
 CVE-2025-49679
< 10.0.14393.8246
Numeric truncation error in Windows Shell allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-49678
< 10.0.14393.8246
Null pointer dereference in Windows NTFS allows an authorized attacker to elevate privileges locally.
7.0HIGH
 CVE-2025-49676
< 10.0.14393.8246
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code ove
8.8HIGH
 CVE-2025-49675
< 10.0.14393.8246
Use after free in Kernel Streaming WOW Thunk Service Driver allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-49674
< 10.0.14393.8246
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code ove
8.8HIGH
 CVE-2025-49673
< 10.0.14393.8246
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code ove
8.8HIGH
 CVE-2025-49672
< 10.0.14393.8246
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code ove
8.8HIGH
 CVE-2025-49671
< 10.0.14393.8246
Exposure of sensitive information to an unauthorized actor in Windows Routing and Remote Access Service (RRAS) allows an unauthori
6.5MEDIUM
 CVE-2025-49670
< 10.0.14393.8246
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code ove
6.5MEDIUM
 CVE-2025-49669
< 10.0.14393.8246
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code ove
8.8HIGH
 CVE-2025-49668
< 10.0.14393.8246
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code ove
8.8HIGH
 CVE-2025-49667
< 10.0.14393.8246
Double free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-49666
< 10.0.14393.8246
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to execute code over a network.
7.2HIGH
 CVE-2025-49665
< 10.0.14393.8246
Concurrent execution using shared resource with improper synchronization ('race condition') in Workspace Broker allows an authoriz
7.8HIGH
 CVE-2025-49664
< 10.0.14393.8246
Exposure of sensitive information to an unauthorized actor in Windows User-Mode Driver Framework Host allows an authorized attacke
5.5MEDIUM
 CVE-2025-49663
< 10.0.14393.8246
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code ove
8.8HIGH
 CVE-2025-49661
< 10.0.14393.8246
Untrusted pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges
7.8HIGH
 CVE-2025-49660
< 10.0.14393.8246
Use after free in Windows Event Tracing allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-49659
< 10.0.14393.8246
Buffer over-read in Windows TDX.sys allows an authorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2025-49658
< 10.0.14393.8246
Out-of-bounds read in Windows TDX.sys allows an authorized attacker to disclose information locally.
5.5MEDIUM
 CVE-2025-49657
< 10.0.14393.8246
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code ove
8.8HIGH
 CVE-2025-48824
< 10.0.14393.8246
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code ove
8.8HIGH
 CVE-2025-48823
< 10.0.14393.8246
Cryptographic issues in Windows Cryptographic Services allows an unauthorized attacker to disclose information over a network.
5.9MEDIUM
 CVE-2025-48822
< 10.0.14393.8246
Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally.
8.6HIGH
 CVE-2025-48821
< 10.0.14393.8246
Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges over an a
7.1HIGH
 CVE-2025-48820
< 10.0.14393.8246
Improper link resolution before file access ('link following') in Windows AppX Deployment Service allows an authorized attacker to
7.8HIGH
 CVE-2025-48819
< 10.0.14393.8246
Sensitive data storage in improperly locked memory in Windows Universal Plug and Play (UPnP) Device Host allows an authorized atta
7.1HIGH
 CVE-2025-48818
< 10.0.14393.8246
Time-of-check time-of-use (toctou) race condition in Windows BitLocker allows an unauthorized attacker to bypass a security featur
6.8MEDIUM
 CVE-2025-48817
< 10.0.14393.8246
Relative path traversal in Remote Desktop Client allows an unauthorized attacker to execute code over a network.
8.8HIGH
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin