CVE Catalog

A spoofing vulnerability has been identified in the Microsoft Azure Attestation service and the Device Health Attestation Service. This issue arises from improper input validation, which allows an authorized attacker to perform spoofing through a physical attack.

A vulnerability allowing out-of-bounds read has been identified in Windows Hyper-V. This issue could enable an unauthorized attacker to execute code locally. The vulnerability affects multiple versions of Windows 10, Windows 11, Windows Server 2022, and Windows Server 2025. Exploitation would require an authenticated attacker on a guest virtual machine to send specially crafted file operation requests that could result in remote code execution on the host server.

A use-after-free vulnerability has been identified in the Windows Bluetooth Port Driver, allowing an authorized attacker to locally elevate privileges. This vulnerability affects multiple versions of Windows 10, Windows 11, Windows Server 2022, and Windows Server 2025.

A vulnerability allowing out-of-bounds read has been identified in Windows Remote Desktop Protocol (RDP). This issue allows an unauthorized attacker to disclose information over the network by reading portions of process memory. The vulnerability affects multiple Windows products, including various versions of Windows Server, Windows 10, Windows 11, and the Remote Desktop client for Windows Desktop.

A use-after-free vulnerability has been identified in the Windows Ancillary Function Driver for WinSock. This vulnerability allows an authorized attacker to elevate privileges locally. The issue arises from improper memory management, leading to a use-after-free condition that can be exploited to gain higher privileges on the system.

A use-after-free vulnerability has been identified in the Windows DWM Core Library, allowing an authorized attacker to locally elevate privileges. This vulnerability affects multiple versions of Windows 10, Windows 11, and Windows Server 2022, 2019, and 2025.

A heap-based buffer overflow vulnerability has been identified in the Windows NTFS file system. This vulnerability allows an unauthorized attacker to execute code locally. The issue arises from improper input validation, which can be exploited by mounting a compromised virtual hard disk (VHD) file.

A use-after-free vulnerability has been identified in the Universal Plug and Play (UPnP) component of Windows, specifically within the upnp.dll file. This vulnerability allows an unauthorized attacker to execute code remotely over a network. It affects multiple Windows versions, including various server and client editions. The vulnerability arises from improper handling of memory, which could be exploited by sending specially crafted data that causes the UPnP service to free memory incorrectly, potentially leading to arbitrary code execution.

A vulnerability allowing out-of-bounds read has been identified in the Windows DHCP Server. This issue enables an authorized attacker to locally disclose information by reading a limited amount of data from the system's memory. The vulnerability is present in several versions of Windows Server and Windows 10.

A vulnerability allowing out-of-bounds read has been identified in the Windows DHCP Server. This issue enables an authorized attacker to locally disclose information by reading a limited amount of data from the system's memory. The vulnerability is present in several versions of Windows 10, Windows 11, Windows Server 2012, Windows Server 2016, Windows Server 2019, Windows Server 2022, Windows Server 2025, and Windows 11 Version 24H2 for ARM64-based Systems.

A vulnerability allowing out-of-bounds read has been identified in Windows Hyper-V. This issue allows an unauthorized attacker to execute code locally. The vulnerability exists in several versions of Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, Windows Server 2022, and Windows Server 2025. To exploit this vulnerability, an authenticated attacker on a guest virtual machine (VM) would need to send specially crafted file operation requests to hardware resources, potentially leading to remote code execution on the host server.

A denial-of-service vulnerability has been identified in the Microsoft UxTheme Library (uxtheme.dll). This issue allows an authorized attacker to cause a local denial-of-service condition by exploiting an out-of-bounds read.

A use-after-free vulnerability has been identified in the Windows Bluetooth Service, allowing an authorized attacker to locally elevate privileges. This vulnerability affects multiple Windows versions, including various releases of Windows 10, Windows 11, Windows Server 2016, 2019, 2022, and 2025. The vulnerability arises from improper memory management, which can be exploited to gain elevated privileges, potentially allowing attackers to perform actions beyond their normal rights.

A vulnerability allowing out-of-bounds read has been identified in the Windows Application Identity (AppID) Subsystem. This issue allows an authorized attacker to locally disclose information by exploiting the vulnerability, which involves certain kernel memory content.

A use-after-free vulnerability has been identified in the Windows Ancillary Function Driver for WinSock. This vulnerability allows an authorized attacker to locally elevate privileges. The issue arises from improper handling of memory, leading to a race condition that can be exploited to gain SYSTEM privileges.

A tampering vulnerability has been identified in Windows Dynamic Host Configuration Protocol (DHCP) Server. This issue allows an unauthorized attacker to manipulate data over the network. The vulnerability affects multiple versions of Windows 10, Windows Server 2012, 2016, 2019, 2022, 2025, and Windows 11.

A use-after-free vulnerability has been identified in the Windows Ancillary Function Driver for WinSock. This vulnerability allows an authorized attacker to locally elevate privileges. The issue arises from improper handling of memory, creating a race condition that could be exploited to gain SYSTEM privileges.

A type confusion vulnerability has been identified in Windows Kernel-Mode Drivers, allowing an authorized attacker to elevate privileges locally. This vulnerability arises from the access of resources using incompatible types, which can be exploited to gain higher system privileges.

A use-after-free vulnerability has been identified in the Universal Plug and Play (UPnP) component of Windows, specifically within the 'upnp.dll' file. This vulnerability allows an unauthorized attacker to execute code remotely over the network. The issue arises from improper memory management, where the UPnP service incorrectly frees memory, potentially leading to arbitrary code execution in the context of the affected process.

A use-after-free vulnerability has been identified in the Windows Ancillary Function Driver for WinSock. This vulnerability allows an authorized attacker to locally elevate privileges. The issue arises from improper handling of memory, leading to a race condition that can be exploited to gain SYSTEM privileges.

A race condition vulnerability has been identified in the UI Automation Manager (uiamanager.dll) of Microsoft Windows. This vulnerability allows an authorized attacker to elevate privileges locally by exploiting improper synchronization in concurrent execution using shared resources.

A use-after-free vulnerability has been identified in the Windows Ancillary Function Driver for WinSock. This vulnerability allows an authorized attacker to elevate privileges locally. The issue arises from improper memory management, leading to a use-after-free condition that can be exploited to gain higher privileges on the system.

A vulnerability in Windows Mark of the Web (MOTW) allows unauthorized attackers to bypass security features over the network. This protection mechanism failure could enable attackers to interfere with MOTW functionality, which is crucial for features like Protected View in Microsoft Office.

A vulnerability in the Windows Application Identity (AppID) Subsystem allows an authorized attacker to locally disclose sensitive information. This issue arises from the unauthorized exposure of certain kernel memory content.

A use-after-free vulnerability has been identified in the Windows SDK, allowing an authorized attacker to locally elevate privileges. This vulnerability arises from improper memory management, which could be exploited to gain higher access rights.

A vulnerability in Windows Internet (wininet.dll) has been identified, allowing an authorized attacker to locally elevate privileges. This issue is caused by an integer overflow or wraparound.

A denial-of-service vulnerability has been identified in ASP.NET Core, specifically in versions 8.0, 9.0, and 10.0, as well as in .NET 8.0 and 10.0 across Windows, Linux, and Mac OS. This vulnerability allows an unauthorized attacker to cause uncontrolled resource consumption, leading to a denial-of-service condition over the network.

A vulnerability allowing an authorized attacker to locally bypass the Secure Boot protection mechanism has been identified in various Microsoft Windows products. This issue arises from a failure in the protection mechanism, which could allow the attacker to undermine the Secure Boot security feature.

A vulnerability in the Windows Collaborative Translation Framework (CTFMON) has been identified, allowing an authorized attacker to elevate privileges locally. This issue arises from improper link resolution before file access, a flaw known as 'link following'.

A code injection vulnerability has been identified in Microsoft Exchange Server, allowing unauthorized attackers to execute code remotely. This issue arises from improper control over code generation, which can be exploited by intercepting network traffic and injecting malicious data. The vulnerability is present in multiple versions of Exchange Server, including the Subscription Edition RTM, Exchange Server 2019 Cumulative Updates 14 and 15, and Exchange Server 2016 Cumulative Update 23.

A server-side request forgery (SSRF) vulnerability has been identified in Microsoft Exchange Server. This vulnerability allows an authorized attacker to elevate privileges over the network. Exploitation could enable the attacker to access restricted information or perform actions typically reserved for users with higher privileges or administrators.

A vulnerability exists in Microsoft Exchange Server that allows an authorized attacker to improperly disclose information over the network. This issue arises from improper authorization, enabling an authenticated user to access unauthorized data.

A server-side request forgery (SSRF) vulnerability has been identified in Microsoft Exchange Server. This vulnerability allows an authorized attacker to disclose information over a network. It affects multiple versions of Exchange Server, including the Subscription Edition RTM, Exchange Server 2016 Cumulative Update 23, and Exchange Server 2019 Cumulative Updates 14 and 15. When exploited, the vulnerability could enable an authenticated user to access sensitive information about internal or external network services that the Exchange server can reach, such as the existence of a service and its response details. In some cases, error messages returned by the server might reveal network addresses, connection statuses, or limited response data from those services.

A server-side request forgery (SSRF) vulnerability has been identified in Microsoft Exchange Server. This vulnerability allows an authorized attacker to perform network spoofing. It affects multiple versions of Microsoft Exchange Server, including the 2019 Cumulative Updates 14 and 15, the 2016 Cumulative Update 23, and the Subscription Edition RTM.

A cross-site scripting vulnerability has been identified in Microsoft Exchange Server. This issue arises from improper input neutralization during web page generation, allowing an unauthorized attacker to perform spoofing over the network. The vulnerability affects multiple versions of Microsoft Exchange Server, including Exchange Server 2016 Cumulative Update 23, Exchange Server 2019 Cumulative Update 15, Exchange Server 2019 Cumulative Update 14, and Exchange Server Subscription Edition RTM.

A vulnerability exists in .NET due to improper link resolution before file access, commonly referred to as 'link following'. This flaw allows an unauthorized attacker to manipulate files locally. The issue affects multiple versions of .NET, including 8.0, 9.0, and 10.0, across Windows, Mac OS, and Linux platforms.

A vulnerability allowing improper authorization in .NET could enable an authorized attacker to locally elevate privileges. This issue affects .NET versions 8.0, 9.0, and 10.0, all installed on Windows.

A time-of-check time-of-use (TOCTOU) race condition vulnerability has been identified in the Program Compatibility Assistant Service of Microsoft Windows. This vulnerability allows an authorized attacker to locally elevate privileges. The issue arises from a race condition, where the timing of events can be manipulated to create unintended consequences, potentially leading to unauthorized access or control.

A remote code execution vulnerability has been identified in Microsoft Office Word. This issue arises from an untrusted pointer dereference, allowing an unauthorized attacker to execute code locally. The vulnerability affects multiple versions of Microsoft Office, including the LTSC for Mac 2021 and 2024, as well as the 365 Apps for Enterprise for both 32-bit and 64-bit systems.

A vulnerability allowing out-of-bounds read has been identified in Microsoft Office. This issue could enable an unauthorized attacker to locally disclose information by reading small portions of heap memory.

A vulnerability allowing deserialization of untrusted data in Microsoft Office SharePoint has been identified. This issue allows an authorized attacker to elevate privileges over a network. The vulnerability affects Microsoft SharePoint Server Subscription Edition, SharePoint Server 2019, and SharePoint Enterprise Server 2016.

A cross-site scripting vulnerability has been identified in Microsoft Office Project Server. This issue allows an authorized attacker to perform spoofing over a network by improperly neutralizing input during web page generation. The vulnerability affects several versions of Microsoft SharePoint, including SharePoint Server 2019, SharePoint Enterprise Server 2016, and SharePoint Server Subscription Edition.

A path traversal vulnerability has been identified in the GitHub Copilot and Visual Studio Code applications. This issue allows an unauthorized attacker to locally bypass a security feature by improperly limiting a pathname to a restricted directory. The vulnerability affects several different versions and ranges of Visual Studio Code, as well as the GitHub Copilot Chat Extension.

A cross-site scripting vulnerability has been identified in Microsoft SharePoint Server Subscription Edition, SharePoint Server 2019, and SharePoint Enterprise Server 2016. This vulnerability allows an authorized attacker to perform spoofing over the network by improperly neutralizing input during web page generation.

A cross-site scripting vulnerability has been identified in Microsoft SharePoint Server products, allowing authorized attackers to perform spoofing attacks over the network. This issue arises from improper input neutralization during web page generation, which could be exploited by convincing users to open malicious links.

A use-after-free vulnerability has been identified in the Linux MANA driver, allowing an authorized attacker to locally elevate privileges. The vulnerability arises from the driver mishandling memory, which could enable an attacker to access sensitive information from the guest and potentially use it to gain higher privileges within the guest system.

A heap-based buffer overflow vulnerability has been identified in Microsoft Office. This vulnerability allows an unauthorized attacker to execute code locally. It affects multiple versions of Microsoft Office, including Office 2016, Office 2019, Office LTSC 2021, Office LTSC 2024, and various SharePoint Server editions. The vulnerability requires user interaction, as an attacker must send a malicious Office file and convince the user to open it.

A heap-based buffer overflow vulnerability has been identified in Microsoft Office. This vulnerability allows an unauthorized attacker to execute code locally. It affects multiple Office products, including Microsoft 365 Apps for Enterprise, Microsoft Office 2019, Microsoft Office 2016, and various Office LTSC versions for both Windows and Mac. The vulnerability arises from a heap-based buffer overflow, which can be exploited to execute arbitrary code on the affected system.

A heap-based buffer overflow vulnerability has been identified in Microsoft Office. This vulnerability allows an unauthorized attacker to execute code locally. It affects multiple Office products, including Office 2016, Office 2019, Office 2021, Office LTSC 2021, Office LTSC 2024, and various versions of Office for Mac and Office for Android.

A vulnerability allowing remote code execution has been identified in Microsoft Office Word. This issue arises from an untrusted pointer dereference, which could enable an unauthorized attacker to execute code on the local machine. The vulnerability affects multiple versions of Microsoft Word, including the 2016, 2019, and 2021 releases, as well as various editions of Microsoft Office LTSC and Microsoft 365 for Mac. The issue requires user interaction, as an attacker must send a malicious Office file and convince the user to open it.