Skip to main content
CVE-2025-49666 HIGH PATCH This Week

Heap-based buffer overflow in Windows Kernel allows an authorized attacker to execute code over a network.

Microsoft Heap Overflow Buffer Overflow Windows Server 2022 Windows Server 2016 +4
NVD
CVSS 3.1
7.2
EPSS
0.2%
CVE-2024-52965 HIGH This Week

A security vulnerability in Fortinet FortiOS (CVSS 7.2). High severity vulnerability requiring prompt remediation.

Fortinet Information Disclosure Fortiproxy Fortios
NVD
CVSS 3.1
7.2
EPSS
0.0%
CVE-2025-48821 HIGH PATCH This Week

Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges over an adjacent network.

Microsoft Use After Free Memory Corruption Denial Of Service Windows 10 1507 +15
NVD
CVSS 3.1
7.1
EPSS
0.1%
CVE-2025-48819 HIGH PATCH This Week

Sensitive data storage in improperly locked memory in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges over an adjacent network.

Microsoft Information Disclosure Windows 11 22h2 Windows 10 1809 Windows Server 2022 23h2 +13
NVD
CVSS 3.1
7.1
EPSS
0.1%
CVE-2025-21422 HIGH This Week

Cryptographic issue while processing crypto API calls, missing checks may lead to corrupted key usage or IV reuses.

Information Disclosure Snapdragon 860 Mobile Firmware Qca6678aq Firmware Wcn7880 Firmware Qdx1011 Firmware +211
NVD
CVSS 3.1
7.1
EPSS
0.0%
CVE-2025-7326 HIGH This Week

A privilege escalation vulnerability in Weak authentication in EOL ASP.NET Core (CVSS 7.0) that allows an unauthorized attacker. High severity vulnerability requiring prompt remediation.

Microsoft Authentication Bypass
NVD HeroDevs
CVSS 3.1
7.0
EPSS
0.3%
CVE-2025-49699 HIGH PATCH This Week

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

Microsoft Use After Free Memory Corruption Denial Of Service Office Long Term Servicing Channel +5
NVD
CVSS 3.1
7.0
EPSS
0.1%
CVE-2025-49727 HIGH PATCH This Week

Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

Microsoft Heap Overflow Buffer Overflow Windows Server 2025 Windows 11 22h2 +14
NVD
CVSS 3.1
7.0
EPSS
0.1%
CVE-2025-49685 HIGH PATCH This Week

Use after free in Microsoft Windows Search Component allows an authorized attacker to elevate privileges locally.

Microsoft Use After Free Memory Corruption Denial Of Service Windows Server 2022 +8
NVD
CVSS 3.1
7.0
EPSS
0.1%
CVE-2025-47975 HIGH PATCH This Week

A privilege escalation vulnerability in Double free in Windows SSDP Service (CVSS 7.0) that allows an authorized attacker. High severity vulnerability requiring prompt remediation.

Microsoft Information Disclosure Windows 10 1809 Windows 11 22h2 Windows 11 24h2 +13
NVD
CVSS 3.1
7.0
EPSS
0.1%
CVE-2025-49737 HIGH PATCH This Week

Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Teams allows an authorized attacker to elevate privileges locally.

Microsoft Race Condition Information Disclosure Teams
NVD
CVSS 3.1
7.0
EPSS
0.0%
CVE-2025-49678 HIGH PATCH This Week

Null pointer dereference in Windows NTFS allows an authorized attacker to elevate privileges locally.

Microsoft Race Condition Denial Of Service Windows Server 2016 Windows 10 22h2 +14
NVD
CVSS 3.1
7.0
EPSS
0.0%
CVE-2023-52236 HIGH This Week

A security vulnerability in A vulnerability (CVSS 7.0). High severity vulnerability requiring prompt remediation.

Information Disclosure
NVD
CVSS 3.1
7.0
EPSS
0.0%
CVE-2025-21006 HIGH This Week

Out-of-bounds write in handling of macro blocks for MPEG4 codec in libsavsvc.so prior to Android 15 allows local attackers to write out-of-bounds memory.

Buffer Overflow Memory Corruption Android Samsung
NVD
CVSS 3.1
7.0
EPSS
0.0%
Prev Page 5 of 5

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy