Vulnerabilities (CVE)

Filtered by vendor Microsoft Subscribe
Total 21183 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-34705 1 Microsoft 5 Windows 10, Windows 11, Windows Server 2016 and 2 more 2025-06-04 N/A 7.8 HIGH
Windows Defender Credential Guard Elevation of Privilege Vulnerability
CVE-2022-34703 1 Microsoft 5 Windows 10, Windows 11, Windows Server 2016 and 2 more 2025-06-04 N/A 7.8 HIGH
Windows Partition Management Driver Elevation of Privilege Vulnerability
CVE-2022-34702 1 Microsoft 10 Windows 10, Windows 11, Windows 7 and 7 more 2025-06-04 N/A 8.1 HIGH
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
CVE-2022-34701 1 Microsoft 10 Windows 10, Windows 11, Windows 7 and 7 more 2025-06-04 N/A 7.5 HIGH
Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability
CVE-2011-2016 1 Microsoft 3 Windows 7, Windows Server 2008, Windows Vista 2025-06-04 9.3 HIGH 7.3 HIGH
Untrusted search path vulnerability in Windows Mail and Windows Meeting Space in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .eml or .wcinv file, aka "Windows Mail Insecure Library Loading Vulnerability."
CVE-2022-23767 2 Hanssak, Microsoft 3 Securegate, Weblink, Windows 2025-06-03 N/A 8.8 HIGH
This vulnerability of SecureGate is SQL-Injection using login without password. A path traversal vulnerability is also identified during file transfer. An attacker can take advantage of these vulnerabilities to perform various attacks such as obtaining privileges and executing remote code, thereby taking over the victim’s system.
CVE-2024-36071 2 Microsoft, Samsung 2 Windows, Magician 2025-06-03 N/A 6.3 MEDIUM
Samsung Magician 8.0.0 on Windows allows an admin to escalate privileges by tampering with the directory and DLL files used during the installation process. This occurs because of an Untrusted Search Path.
CVE-2024-53921 2 Microsoft, Samsung 2 Windows, Magician 2025-06-03 N/A 2.8 LOW
An issue was discovered in the installer in Samsung Magician 8.1.0 on Windows. An attacker can create arbitrary folders in the system permission directory via a symbolic link during the installation process.
CVE-2025-5180 2 Microsoft, Wondershare 2 Windows, Filmora 2025-06-03 6.0 MEDIUM 7.0 HIGH
A vulnerability, which was classified as critical, has been found in Wondershare Filmora 14.5.16. Affected by this issue is some unknown functionality in the library CRYPTBASE.dll of the file NFWCHK.exe of the component Installer. The manipulation leads to uncontrolled search path. Attacking locally is a requirement. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2024-43033 2 Jpress, Microsoft 2 Jpress, Windows 2025-06-03 N/A 8.8 HIGH
JPress through 5.1.1 on Windows has an arbitrary file upload vulnerability that could cause arbitrary code execution via ::$DATA to AttachmentController, such as a .jsp::$DATA file to io.jpress.web.commons.controller.AttachmentController#upload. NOTE: this is unrelated to the attack vector for CVE-2024-32358.
CVE-2024-21309 1 Microsoft 5 Windows 11 21h2, Windows 11 22h2, Windows 11 23h2 and 2 more 2025-05-30 N/A 7.8 HIGH
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
CVE-2022-34715 1 Microsoft 1 Windows Server 2022 2025-05-29 N/A 9.8 CRITICAL
Windows Network File System Remote Code Execution Vulnerability
CVE-2022-34714 1 Microsoft 10 Windows 10, Windows 11, Windows 7 and 7 more 2025-05-29 N/A 8.1 HIGH
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
CVE-2022-34712 1 Microsoft 4 Windows 10, Windows 11, Windows Server 2016 and 1 more 2025-05-29 N/A 5.5 MEDIUM
Windows Defender Credential Guard Information Disclosure Vulnerability
CVE-2022-34710 1 Microsoft 5 Windows 10, Windows 11, Windows Server 2016 and 2 more 2025-05-29 N/A 5.5 MEDIUM
Windows Defender Credential Guard Information Disclosure Vulnerability
CVE-2022-34709 1 Microsoft 5 Windows 10, Windows 11, Windows Server 2016 and 2 more 2025-05-29 N/A 6.0 MEDIUM
Windows Defender Credential Guard Security Feature Bypass Vulnerability
CVE-2022-34708 1 Microsoft 10 Windows 10, Windows 11, Windows 7 and 7 more 2025-05-29 N/A 5.5 MEDIUM
Windows Kernel Information Disclosure Vulnerability
CVE-2022-35772 1 Microsoft 1 Azure Site Recovery Vmware To Azure 2025-05-29 N/A 7.2 HIGH
Azure Site Recovery Remote Code Execution Vulnerability
CVE-2022-35771 1 Microsoft 5 Windows 10, Windows 11, Windows Server 2016 and 2 more 2025-05-29 N/A 7.8 HIGH
Windows Defender Credential Guard Elevation of Privilege Vulnerability
CVE-2022-35769 1 Microsoft 10 Windows 10, Windows 11, Windows 7 and 7 more 2025-05-29 N/A 7.5 HIGH
Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability