CVE Alert: CVE-2025-54111 – Microsoft – Windows 10 Version 1809
CVE-2025-54111 HIGHNo exploitation known Use after free in Windows UI XAML Phone DatePickerFlyout allows an authorized attacker to elevate privileges...
microsoft
CVE Alert: CVE-2025-54110 – Microsoft – Windows 10 Version 1809
CVE-2025-54110 HIGHNo exploitation known Integer overflow or wraparound in Windows Kernel allows an authorized attacker to elevate privileges locally. CVSS...
CVE Alert: CVE-2025-54106 – Microsoft – Windows Server 2019
CVE-2025-54106 HIGHNo exploitation known Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker...
CVE Alert: CVE-2025-54108 – Microsoft – Windows Server 2025 (Server Core installation)
CVE-2025-54108 HIGHNo exploitation known Concurrent execution using shared resource with improper synchronization ('race condition') in Capability Access Management Service (camsvc)...
CVE Alert: CVE-2025-54112 – Microsoft – Windows 10 Version 1809
CVE-2025-54112 HIGHNo exploitation known Use after free in Microsoft Virtual Hard Drive allows an authorized attacker to elevate privileges locally....
CVE Alert: CVE-2025-54105 – Microsoft – Windows Server 2025 (Server Core installation)
CVE-2025-54105 HIGHNo exploitation known Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows...
CVE Alert: CVE-2025-54103 – Microsoft – Windows 10 Version 21H2
CVE-2025-54103 HIGHNo exploitation known Use after free in Windows Management Services allows an unauthorized attacker to elevate privileges locally. CVSS...
CVE Alert: CVE-2025-54102 – Microsoft – Windows 10 Version 1809
CVE-2025-54102 HIGHNo exploitation known Use after free in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges...
CVE Alert: CVE-2025-54091 – Microsoft – Windows 10 Version 1809
CVE-2025-54091 HIGHNo exploitation known Integer overflow or wraparound in Windows Hyper-V allows an authorized attacker to elevate privileges locally. CVSS...
CVE Alert: CVE-2025-54092 – Microsoft – Windows 10 Version 1809
CVE-2025-54092 HIGHNo exploitation known Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Hyper-V allows an authorized...
CVE Alert: CVE-2025-54098 – Microsoft – Windows 10 Version 1809
CVE-2025-54098 HIGHNo exploitation known Improper access control in Windows Hyper-V allows an authorized attacker to elevate privileges locally. CVSS v3.1...
CVE Alert: CVE-2025-54093 – Microsoft – Windows 10 Version 1809
CVE-2025-54093 HIGHNo exploitation known Time-of-check time-of-use (toctou) race condition in Windows TCP/IP allows an authorized attacker to elevate privileges locally....
CVE Alert: CVE-2025-54099 – Microsoft – Windows 10 Version 1809
CVE-2025-54099 HIGHNo exploitation known Stack-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate...
CVE Alert: CVE-2025-53807 – Microsoft – Windows 10 Version 1809
CVE-2025-53807 HIGHNo exploitation known Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Graphics Component allows an...
CVE Alert: CVE-2025-53805 – Microsoft – Windows Server 2022
CVE-2025-53805 HIGHNo exploitation known Out-of-bounds read in Windows Internet Information Services allows an unauthorized attacker to deny service over a...
CVE Alert: CVE-2025-49734 – Microsoft – Windows 10 Version 1809
CVE-2025-49734 HIGHNo exploitation known Improper restriction of communication channel to intended endpoints in Windows PowerShell allows an authorized attacker to...
CVE Alert: CVE-2025-53801 – Microsoft – Windows 10 Version 1809
CVE-2025-53801 HIGHNo exploitation known Untrusted pointer dereference in Windows DWM allows an authorized attacker to elevate privileges locally. CVSS v3.1...
CVE Alert: CVE-2025-53800 – Microsoft – Windows 10 Version 1809
CVE-2025-53800 HIGHNo exploitation known No cwe for this issue in Microsoft Graphics Component allows an authorized attacker to elevate privileges...
CVE Alert: CVE-2025-49692 – Microsoft – Azure Connected Machine Agent
CVE-2025-49692 HIGHNo exploitation known Improper access control in Azure Windows Virtual Machine Agent allows an authorized attacker to elevate privileges...
CVE Alert: CVE-2025-53802 – Microsoft – Windows Server 2022
CVE-2025-53802 HIGHNo exploitation known Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally. CVSS...
CVE Alert: CVE-2025-55238 – Microsoft – Dynamics 365 FastTrack Implementation
CVE-2025-55238 HIGHNo exploitation known Dynamics 365 FastTrack Implementation Assets Information Disclosure Vulnerability CVSS v3.1 (7.5) Vendor Microsoft Product Dynamics 365...
CVE Alert: CVE-2025-49706 – Microsoft – Microsoft SharePoint Enterprise Server 2016
CVE-2025-49706 MEDIUMCISA KEVExploitation active Improper authentication in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network....
CVE Alert: CVE-2025-53770 – Microsoft – Microsoft SharePoint Enterprise Server 2016
CVE-2025-53770 CRITICALCISA KEVExploitation active Deserialization of untrusted data in on-premises Microsoft SharePoint Server allows an unauthorized attacker to execute code...
CVE Alert: CVE-2025-49704 – Microsoft – Microsoft SharePoint Enterprise Server 2016
CVE-2025-49704 HIGHCISA KEVExploitation active Improper control of generation of code ('code injection') in Microsoft Office SharePoint allows an authorized attacker...
