Total
5713 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-21307 | 2025-01-15 | 9.8 Critical | ||
| Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability | ||||
| CVE-2024-50061 | 1 Linux | 1 Linux Kernel | 2025-01-15 | 7.0 High |
| In the Linux kernel, the following vulnerability has been resolved: i3c: master: cdns: Fix use after free vulnerability in cdns_i3c_master Driver Due to Race Condition In the cdns_i3c_master_probe function, &master->hj_work is bound with cdns_i3c_master_hj. And cdns_i3c_master_interrupt can call cnds_i3c_master_demux_ibis function to start the work. If we remove the module which will call cdns_i3c_master_remove to make cleanup, it will free master->base through i3c_master_unregister while the work mentioned above will be used. The sequence of operations that may lead to a UAF bug is as follows: CPU0 CPU1 | cdns_i3c_master_hj cdns_i3c_master_remove | i3c_master_unregister(&master->base) | device_unregister(&master->dev) | device_release | //free master->base | | i3c_master_do_daa(&master->base) | //use master->base Fix it by ensuring that the work is canceled before proceeding with the cleanup in cdns_i3c_master_remove. | ||||
| CVE-2025-21335 | 2025-01-15 | 7.8 High | ||
| Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability | ||||
| CVE-2025-21334 | 2025-01-15 | 7.8 High | ||
| Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability | ||||
| CVE-2025-21362 | 2025-01-15 | 8.4 High | ||
| Microsoft Excel Remote Code Execution Vulnerability | ||||
| CVE-2025-21372 | 2025-01-15 | 7.8 High | ||
| Microsoft Brokering File System Elevation of Privilege Vulnerability | ||||
| CVE-2025-21224 | 2025-01-15 | 8.1 High | ||
| Windows Line Printer Daemon (LPD) Service Remote Code Execution Vulnerability | ||||
| CVE-2025-21366 | 2025-01-15 | 7.8 High | ||
| Microsoft Access Remote Code Execution Vulnerability | ||||
| CVE-2025-21345 | 2025-01-15 | 7.8 High | ||
| Microsoft Office Visio Remote Code Execution Vulnerability | ||||
| CVE-2025-21315 | 2025-01-15 | 7.8 High | ||
| Microsoft Brokering File System Elevation of Privilege Vulnerability | ||||
| CVE-2025-21304 | 2025-01-15 | 7.8 High | ||
| Microsoft DWM Core Library Elevation of Privilege Vulnerability | ||||
| CVE-2025-21298 | 2025-01-15 | 9.8 Critical | ||
| Windows OLE Remote Code Execution Vulnerability | ||||
| CVE-2025-21297 | 2025-01-15 | 8.1 High | ||
| Windows Remote Desktop Services Remote Code Execution Vulnerability | ||||
| CVE-2025-21296 | 2025-01-15 | 7.5 High | ||
| BranchCache Remote Code Execution Vulnerability | ||||
| CVE-2025-21295 | 2025-01-15 | 8.1 High | ||
| SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution Vulnerability | ||||
| CVE-2025-21281 | 2025-01-15 | 7.8 High | ||
| Microsoft COM for Windows Elevation of Privilege Vulnerability | ||||
| CVE-2024-49128 | 1 Microsoft | 6 Windows Server 2012, Windows Server 2016, Windows Server 2019 and 3 more | 2025-01-15 | 8.1 High |
| Windows Remote Desktop Services Remote Code Execution Vulnerability | ||||
| CVE-2024-49127 | 1 Microsoft | 15 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 12 more | 2025-01-15 | 8.1 High |
| Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | ||||
| CVE-2024-49118 | 1 Microsoft | 14 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 11 more | 2025-01-15 | 8.1 High |
| Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||||
| CVE-2024-49116 | 1 Microsoft | 5 Windows Server 2016, Windows Server 2019, Windows Server 2022 and 2 more | 2025-01-15 | 8.1 High |
| Windows Remote Desktop Services Remote Code Execution Vulnerability | ||||