CVE Catalog

A remote code execution vulnerability has been identified in Microsoft Excel. This issue allows an attacker to execute arbitrary code on the affected system. The vulnerability is present in multiple versions of Microsoft Office, including the 2021 and 2019 LTSC releases, as well as in Microsoft 365 Apps for Enterprise. The root cause of the vulnerability is an untrusted pointer dereference, which can be exploited by manipulating how Excel handles certain types of data.

A remote code execution vulnerability exists in Microsoft SharePoint Server. This issue allows an attacker to execute arbitrary code on the server where SharePoint is running.

A security feature bypass vulnerability has been identified in Microsoft Office. This vulnerability allows attackers to bypass certain security mechanisms, potentially leading to unauthorized actions or access within the application.

A remote code execution vulnerability exists in Microsoft Office Visio. This issue allows an attacker to execute arbitrary code on the affected system.

A remote code execution vulnerability exists in Microsoft SharePoint Server. This issue allows an attacker to execute arbitrary code on the server where SharePoint is running.

An information disclosure vulnerability has been identified in the Windows Web Threat Defense User Service. This vulnerability could allow unauthorized users to access sensitive information.

A vulnerability allowing elevation of privilege has been identified in Windows Digital Media. This issue arises because of an out-of-bounds read, which could potentially be exploited to gain SYSTEM privileges.

A vulnerability has been identified in Windows Virtualization-Based Security (VBS) that allows for a security feature bypass. This vulnerability could potentially be exploited to undermine the security mechanisms provided by VBS.

A remote code execution vulnerability has been identified in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system.

A remote code execution vulnerability in GDI+ has been identified, affecting multiple Microsoft products, including various versions of Microsoft Office for Mac, Windows Server, and Windows 10. The vulnerability allows authenticated attackers to execute arbitrary code on the affected system.

A cryptographic information disclosure vulnerability exists in multiple Windows products, including various Windows Server versions and Windows 10 and 11. This vulnerability allows an attacker to read the contents of encrypted PKCS1 information from a user mode process, potentially leading to unauthorized access to sensitive data.

An elevation of privilege vulnerability has been identified in the Windows Hyper-V NT Kernel Integration Virtual Service Provider (VSP). This vulnerability allows an attacker to gain SYSTEM privileges. It exists in various versions of Windows 10, Windows 11, Windows Server 2022, and Windows Server 2025. The issue arises within the Hyper-V NT Kernel Integration VSP, which facilitates communication between the host operating system and container-type virtual machines, such as Windows Sandbox and Microsoft Defender Application Guard. Unlike traditional Hyper-V VMs, which maintain a strong isolation boundary, container-type VMs simulate running on the host, creating a different vulnerability landscape.

An elevation of privilege vulnerability has been identified in the Windows Hyper-V NT Kernel Integration Virtual Service Provider (VSP). This vulnerability allows an attacker to gain SYSTEM privileges. It exists in various versions of Windows 10, Windows 11, Windows Server 2022, and Windows Server 2025. The issue arises within the Hyper-V NT Kernel Integration VSP, which facilitates communication between the host operating system and container-type virtual machines, such as Windows Sandbox and Microsoft Defender Application Guard. Unlike traditional Hyper-V VMs, which maintain a strong isolation boundary, container-type VMs simulate running on the host, creating a potential vulnerability.

An elevation of privilege vulnerability has been identified in the Windows Hyper-V NT Kernel Integration Virtual Service Provider (VSP). This vulnerability allows an attacker to escalate privileges, potentially gaining SYSTEM rights on the Hyper-V host. The issue arises in container-type virtual machines, such as those used by Windows Sandbox and Microsoft Defender Application Guard, where the Hyper-V NT Kernel Integration VSP driver facilitates communication between the host operating system and the virtual machines. Exploitation of this vulnerability could lead to unauthorized access to sensitive data and a complete takeover of the Hyper-V host.

A security feature bypass vulnerability has been identified in the MapUrlToZone function across various Microsoft Windows versions. This vulnerability allows for improper resolution of path equivalence, potentially leading to unauthorized actions or access by exploiting the way URLs are mapped to security zones.

An elevation of privilege vulnerability has been identified in the Windows Installer. This vulnerability allows an attacker to gain SYSTEM privileges. It requires user interaction, specifically a reboot, to exploit. The issue is present in multiple versions of Windows 10 and Windows 11, as well as Windows Server 2022.

A denial-of-service vulnerability has been identified in Windows Remote Desktop Services. This issue allows an attacker to send specially crafted packets that can disrupt the availability of the service, leading to a denial-of-service condition.

A security feature bypass vulnerability has been identified in Microsoft Windows. This vulnerability allows an attacker to bypass the MapURLToZone method, which could lead to improper handling of security zones. The issue affects all supported versions of Windows, including various server editions. Exploitation requires user interaction, such as opening a specially crafted file.

A security feature bypass vulnerability has been identified in the MapUrlToZone method across various supported versions of Microsoft Windows. This vulnerability allows an attacker to bypass certain security features, potentially leading to unauthorized access or actions that should be restricted.

An elevation of privilege vulnerability has been identified in the Windows Digital Media component. This vulnerability allows an attacker to gain higher privileges on the affected system.

A remote code execution vulnerability has been identified in Internet Explorer. This issue allows an attacker to execute arbitrary code on the affected system. The vulnerability is present in several versions of Internet Explorer and can be exploited locally, requiring user interaction.

A vulnerability allowing elevation of privilege has been identified in Windows Digital Media. This issue arises from an out-of-bounds read, which could be exploited to gain SYSTEM privileges. The vulnerability affects several versions of Windows, including various editions of Windows 10, Windows 11, Windows Server 2016, and Windows Server 2022, among others.

A memory information disclosure vulnerability has been identified in the Windows kernel. This vulnerability could allow an attacker to access certain memory addresses within kernel space, potentially leading to further malicious activities.

A memory information disclosure vulnerability in the Windows Kernel has been identified. This vulnerability could allow an attacker to access certain memory addresses within kernel space, potentially leading to further malicious activities.

A memory information disclosure vulnerability in the Windows kernel has been identified. This vulnerability could allow an attacker to access certain memory addresses within kernel space, potentially leading to further malicious activities.

A memory information disclosure vulnerability in the Windows Kernel has been identified. This vulnerability could allow an attacker to access sensitive information from memory, potentially leading to further exploitation.

A memory information disclosure vulnerability in the Windows kernel has been identified. This vulnerability could allow an attacker to access certain memory addresses within kernel space, potentially leading to further malicious activities.

A memory information disclosure vulnerability in the Windows Kernel has been identified. This vulnerability could allow an attacker to access sensitive information from memory, potentially leading to further exploitation.

A memory information disclosure vulnerability has been identified in the Windows kernel. This vulnerability could allow an attacker to access certain memory addresses within kernel space, potentially leading to further malicious activities.

An elevation of privilege vulnerability has been identified in the Microsoft Brokering File System. This vulnerability allows an attacker to gain higher privileges than intended, potentially leading to unauthorized actions or access within the system.

A spoofing vulnerability in Windows SmartScreen has been identified. This issue allows an attacker to manipulate the SmartScreen feature, potentially leading to misleading security warnings or the bypassing of security measures.

A denial-of-service vulnerability has been identified in the Windows Security Account Manager (SAM). This issue allows an authenticated attacker to make specially crafted API calls that disrupt service, leading to a denial-of-service condition.

An information disclosure vulnerability has been identified in the Windows Smart Card Reader. This vulnerability could allow unauthorized access to sensitive information.

An elevation of privilege vulnerability exists in Windows NTLM V1. This vulnerability allows an attacker to gain elevated privileges, potentially leading to unauthorized actions or access within the system.

An elevation of privilege vulnerability has been identified in the Windows Digital Media component. This vulnerability allows an attacker to gain higher privileges on the affected system.

A remote code execution vulnerability exists in Windows Remote Desktop Services. This issue arises from a race condition that creates a use-after-free scenario, allowing an attacker to execute arbitrary code on the affected system. The vulnerability is present in several versions of Windows Server, including 2012, 2016, 2019, 2022, and 2025, as well as in Windows Server 2012 R2.

A spoofing vulnerability in the Windows Themes component has been identified. This issue allows an attacker to manipulate how themes are applied, potentially leading to unauthorized changes in the user interface or user experience. The vulnerability affects multiple versions of Windows, including various releases of Windows 10, Windows 11, Windows Server 2012, and Windows Server 2016.

A remote code execution vulnerability has been identified in the Windows Reliable Multicast Transport Driver (RMCAST). This vulnerability allows an attacker to execute arbitrary code on the affected system.

A remote code execution vulnerability has been identified in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system.

A remote code execution vulnerability has been identified in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system.

An elevation of privilege vulnerability exists in the Microsoft DWM Core Library. This vulnerability allows an attacker to gain higher privileges than intended, potentially leading to unauthorized access or actions within the system.

A remote code execution vulnerability has been identified in the Windows Telephony Service. This vulnerability allows an attacker to execute arbitrary code on the affected system. It arises from a heap-based buffer overflow, where malicious data sent from a server can be executed on the user's machine. The vulnerability is present in several Windows Server and client versions, including Windows Server 2008, Windows Server 2016, Windows 10, and Windows 11.

A remote code execution vulnerability has been identified in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system.

A vulnerability allowing information disclosure has been identified in the Windows Geolocation Service. This issue arises from improper access control, which could potentially allow an attacker to access sensitive information.

A denial-of-service vulnerability has been identified in the Windows upnphost.dll component. This issue can be exploited to cause a significant disruption in service, leading to a high impact on availability.

A security feature bypass vulnerability has been identified in Windows Kerberos, allowing an attacker to bypass Windows Defender Credential Guard. This could lead to the leakage of Kerberos credentials. The vulnerability affects multiple Windows versions, including Windows 10, Windows 11, Windows Server 2016, and Windows Server 2022. The issue arises from an insecure storage of sensitive information, which could be exploited to manipulate or access protected data or features.

A remote code execution vulnerability has been identified in Windows OLE (Object Linking and Embedding) technology. This vulnerability allows an attacker to execute arbitrary code on the victim's machine. It is present in several versions of Windows Server and Windows 10, as well as in Windows 11 and Windows Server 2022. The vulnerability can be exploited by sending a specially crafted email that is opened or previewed in an affected version of Microsoft Outlook.

A remote code execution vulnerability has been identified in Windows Remote Desktop Services. This vulnerability allows an attacker to execute arbitrary code on the affected system by exploiting a race condition that creates a use-after-free scenario. The vulnerability is present in several versions of Windows Server, including 2012, 2008 R2, 2016, 2022, and 2019, as well as in Windows Server 2025.

A remote code execution vulnerability has been identified in the BranchCache feature of Microsoft products. This vulnerability allows an attacker to execute arbitrary code on the affected system.

A remote code execution vulnerability has been identified in the SPNEGO Extended Negotiation (NEGOEX) security mechanism across various Windows Server and Windows 10 versions. This vulnerability allows an attacker to execute arbitrary code on the affected system without user interaction. The issue arises from a use-after-free flaw, where memory is improperly managed, potentially leading to exploitation.