Total
286780 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-24061 | 2025-03-23 | 7.8 High | ||
| Protection mechanism failure in Windows Mark of the Web (MOTW) allows an unauthorized attacker to bypass a security feature locally. | ||||
| CVE-2025-24059 | 2025-03-23 | 7.8 High | ||
| Incorrect conversion between numeric types in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-24056 | 2025-03-23 | 8.8 High | ||
| Heap-based buffer overflow in Windows Telephony Server allows an unauthorized attacker to execute code over a network. | ||||
| CVE-2025-24055 | 2025-03-23 | 4.3 Medium | ||
| Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to disclose information with a physical attack. | ||||
| CVE-2025-24054 | 2025-03-23 | 6.5 Medium | ||
| External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network. | ||||
| CVE-2025-24051 | 2025-03-23 | 8.8 High | ||
| Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network. | ||||
| CVE-2025-24050 | 2025-03-23 | 7.8 High | ||
| Heap-based buffer overflow in Role: Windows Hyper-V allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-24048 | 2025-03-23 | 7.8 High | ||
| Heap-based buffer overflow in Role: Windows Hyper-V allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-24046 | 2025-03-23 | 7.8 High | ||
| Use after free in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-24045 | 2025-03-23 | 8.1 High | ||
| Sensitive data storage in improperly locked memory in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network. | ||||
| CVE-2025-21199 | 2025-03-23 | 6.7 Medium | ||
| Improper privilege management in Azure Agent Installer allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-21247 | 2025-03-23 | 4.3 Medium | ||
| Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network. | ||||
| CVE-2025-29814 | 2025-03-23 | 9.3 Critical | ||
| Improper authorization in Microsoft Partner Center allows an authorized attacker to elevate privileges over a network. | ||||
| CVE-2025-29807 | 2025-03-23 | 8.7 High | ||
| Deserialization of untrusted data in Microsoft Dataverse allows an authorized attacker to execute code over a network. | ||||
| CVE-2025-25003 | 2025-03-23 | 7.3 High | ||
| Uncontrolled search path element in Visual Studio allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-24998 | 2025-03-23 | 7.3 High | ||
| Uncontrolled search path element in Visual Studio allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-24997 | 2025-03-23 | 4.4 Medium | ||
| Null pointer dereference in Windows Kernel Memory allows an authorized attacker to deny service locally. | ||||
| CVE-2025-24996 | 2025-03-23 | 6.5 Medium | ||
| External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network. | ||||
| CVE-2025-24995 | 2025-03-23 | 7.8 High | ||
| Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-21180 | 2025-03-23 | 7.8 High | ||
| Heap-based buffer overflow in Windows exFAT File System allows an unauthorized attacker to execute code locally. | ||||