Defender For Endpoint CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (10 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2025-59497	2 Linux, Microsoft	2 Linux, Defender For Endpoint	2025-10-24	7 High
Time-of-check time-of-use (toctou) race condition in Microsoft Defender for Linux allows an authorized attacker to deny service locally.
CVE-2025-26684	1 Microsoft	1 Defender For Endpoint	2025-09-10	6.7 Medium
External control of file name or path in Microsoft Defender for Endpoint allows an authorized attacker to elevate privileges locally.
CVE-2025-47161	1 Microsoft	1 Defender For Endpoint	2025-09-10	7.8 High
Improper access control in Microsoft Defender for Endpoint allows an authorized attacker to elevate privileges locally.
CVE-2024-43614	1 Microsoft	1 Defender For Endpoint	2025-07-08	5.5 Medium
Relative path traversal in Microsoft Defender for Endpoint allows an authorized attacker to perform spoofing locally.
CVE-2022-33637	1 Microsoft	1 Defender For Endpoint	2025-07-08	6.5 Medium
Microsoft Defender for Endpoint Tampering Vulnerability
CVE-2022-23278	4 Apple, Google, Linux and 1 more	11 Macos, Android, Linux Kernel and 8 more	2025-07-08	5.9 Medium
Microsoft Defender for Endpoint Spoofing Vulnerability
CVE-2024-49071	1 Microsoft	1 Defender For Endpoint	2025-05-13	6.5 Medium
Improper authorization of an index that contains sensitive information from a Global Files search in Windows Defender allows an authorized attacker to disclose information over a network.
CVE-2024-49057	1 Microsoft	1 Defender For Endpoint	2025-05-13	8.1 High
Microsoft Defender for Endpoint on Android Spoofing Vulnerability
CVE-2024-21315	1 Microsoft	14 Defender For Endpoint, Windows 10 1507, Windows 10 1607 and 11 more	2025-05-03	7.8 High
Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability
CVE-2022-35828	1 Microsoft	1 Defender For Endpoint	2025-03-11	7.8 High
Microsoft Defender for Endpoint for Mac Elevation of Privilege Vulnerability

Page 1 of 1.