Search
Search Results (314440 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-55697 | 2025-10-16 | 7.8 High | ||
| Heap-based buffer overflow in Azure Local allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-47989 | 2025-10-16 | 7 High | ||
| Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-58728 | 2025-10-16 | 7.8 High | ||
| Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-55680 | 2025-10-16 | 7.8 High | ||
| Time-of-check time-of-use (toctou) race condition in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-55240 | 2025-10-16 | 7.3 High | ||
| Improper access control in Visual Studio allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-59242 | 2025-10-16 | 7.8 High | ||
| Heap-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-55701 | 2025-10-16 | 7.8 High | ||
| Improper validation of specified type of input in Microsoft Windows allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-55326 | 2025-10-16 | 7.5 High | ||
| Use after free in Connected Devices Platform Service (Cdpsvc) allows an unauthorized attacker to execute code over a network. | ||||
| CVE-2025-58719 | 2025-10-16 | 4.7 Medium | ||
| Use after free in Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-58722 | 2025-10-16 | 7.8 High | ||
| Heap-based buffer overflow in Windows DWM allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-48004 | 2025-10-16 | 7.4 High | ||
| Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally. | ||||
| CVE-2025-55694 | 2025-10-16 | 7.8 High | ||
| Improper access control in Windows Error Reporting allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-55692 | 2025-10-16 | 7.8 High | ||
| Improper input validation in Windows Error Reporting allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-49708 | 2025-10-16 | 9.9 Critical | ||
| Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges over a network. | ||||
| CVE-2025-55328 | 2025-10-16 | 7.8 High | ||
| Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Hyper-V allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-55678 | 2025-10-16 | 7 High | ||
| Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-55681 | 2025-10-16 | 7 High | ||
| Out-of-bounds read in Windows DWM allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-55693 | 2025-10-16 | 7.4 High | ||
| Use after free in Windows Kernel allows an unauthorized attacker to elevate privileges locally. | ||||
| CVE-2025-59207 | 2025-10-16 | 7.8 High | ||
| Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-50152 | 2025-10-16 | 7.8 High | ||
| Out-of-bounds read in Windows Kernel allows an authorized attacker to elevate privileges locally. | ||||