|
2025-05-13
|
CVE-2025-29967
|
Heap-based buffer overflow in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.
|
Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025
|
8.8
|
|
|
|
2025-05-13
|
CVE-2025-29969
|
Time-of-check time-of-use (toctou) race condition in Windows Fundamentals allows an authorized attacker to execute code over a network.
|
Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025
|
7.5
|
|
|
|
2025-05-13
|
CVE-2025-29971
|
Out-of-bounds read in Web Threat Defense (WTD.sys) allows an unauthorized attacker to deny service over a network.
|
Windows_11_22h2, Windows_11_23h2, Windows_11_24h2
|
7.5
|
|
|
|
2025-05-13
|
CVE-2025-29970
|
Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
|
Windows_11_24h2, Windows_server_2022_23h2, Windows_server_2025
|
7.8
|
|
|
|
2025-05-13
|
CVE-2025-29974
|
Integer underflow (wrap or wraparound) in Windows Kernel allows an unauthorized attacker to disclose information over an adjacent network.
|
Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025
|
5.7
|
|
|
|
2025-05-13
|
CVE-2025-29976
|
Improper privilege management in Microsoft Office SharePoint allows an authorized attacker to elevate privileges locally.
|
Sharepoint_server, Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025
|
7.8
|
|
|
|
2025-05-13
|
CVE-2025-30385
|
Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
|
Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025
|
7.8
|
|
|
|
2025-05-13
|
CVE-2025-30388
|
Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.
|
Office, Office_long_term_servicing_channel, Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025
|
7.8
|
|
|
|
2025-04-08
|
CVE-2025-29824
|
Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
|
Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025
|
N/A
|
|
|
|
2024-08-13
|
CVE-2024-38193
|
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
|
Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_21h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2
|
N/A
|
|
|