Back to Trending CVEs
Microsoft
388 vulnerabilities across 117 products
Emergency Fix
3
Fix Soon
10
Planned Fix
31
Avg CVSS
7.9
.NET Core and Visual Studio.NET Framework.NET Framework, SharePoint, Visual StudioATM Font DriverActive DirectoryAncillary Function Driver (afd.sys)BitLockerClient-Server Run-time Subsystem (CSRSS)Configuration ManagerDWM Core LibraryDefenderDirectXDirectX Graphics Kernel (DXGKRNL)EdgeEdge and Internet ExplorerEnhanced Cryptographic ProviderExcelExchangeExchange ServerForefront Threat Management Gateway (TMG)Graphics ComponentGraphics Device Interface (GDI)HTTP Protocol StackHTTP.sysHyper-V RemoteFXInput Method Editor (IME) JapaneseInternet ExplorerInternet Explorer Scripting EngineInternet Explorer and EdgeInternet Information Services (IIS)Kerberos Key Distribution Center (KDC)MSCOMCTL.OCXMSHTMLMalware Protection EngineMicrosoft .NET FrameworkMicrosoft 365 Apps for EnterpriseMicrosoft 365 Apps for Enterprise; Office Long-Term Servicing Channel (LTSC) 2021 and 2024 (Windows and macOS)Microsoft 365 Apps for enterpriseMicrosoft Copilot StudioMicrosoft Defender Antimalware PlatformMicrosoft Exchange ServerMicrosoft Exchange Server 2013Microsoft Exchange Server 2016Microsoft Exchange Server 2019Microsoft Malware Protection EngineMicrosoft OfficeMicrosoft Office 2004 for MacMicrosoft Office 2008 for MacMicrosoft Office 2016Microsoft Office 2019Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Service Pack 1Microsoft Office Excel 2000 Service Pack 3Microsoft Office Excel 2002 Service Pack 3Microsoft Office Excel 2003 Service Pack 3Microsoft Office Excel 2007 Service Pack 1Microsoft Office Excel ViewerMicrosoft Office Excel Viewer 2003Microsoft Office LTSC 2021Microsoft Office LTSC 2024Microsoft Office LTSC for Mac 2021Microsoft Office LTSC for Mac 2024Microsoft Semantic Kernel (.NET SDK)Microsoft Semantic Kernel Python SDKMicrosoft SharePoint Enterprise Server 2016Microsoft SharePoint Server 2019Microsoft SharePoint Server Subscription EditionMicrosoft Support Diagnostic Tool (MSDT)Microsoft Visual Basic for ApplicationsMicrosoft Visual Basic for Applications SDKMicrosoft WindowsMicrosoft Windows SMBv1 ServerMicrosoft Windows ShellMicrosoft Word 2016Microsoft.AspNetCore.DataProtectionOfficeOffice OutlookOffice and WordPadOpen Management Infrastructure (OMI)OutlookPartner CenterPower PagesPowerPointProjectPublisherRemote Desktop ServicesSMBv1SMBv1 serverSMBv3SQL ServerSemantic Kernel (Python SDK)SharePointSharePoint ServerSilverlightSkype for BusinessSmartScreen PromptStreaming ServiceStreaming Service ProxyTask SchedulerUpdate Notification ManagerWin32kWindowsWindows Windows 10Windows 11Windows 11 Version 24H2Windows 11 Version 25H2Windows Active DirectoryWindows CNG Key Isolation ServiceWindows COM+ Event System ServiceWindows HTTP.sys (HTTP Server API)Windows Operating SystemWindows ServerWindows Server 2025Windows Server 2025 (Server Core installation)WordWordPadXML Core Services
Emergency Fix
CVE-2009-1537Remote Code Execution in Microsoft DirectX
RCE9.3
Emergency Fix
CVE-2021-26855Server-Side Request Forgery in Microsoft Exchange Server
SSRF9.1
Emergency Fix
CVE-2026-20929Kerberos relay via DNS CNAME (HTTP.sys) (Credential relay / auth-bypass)
Auth7.5
Fix Soon
CVE-2023-36874Local Privilege Escalation in Microsoft Windows
LPE7.8
Fix Soon
CVE-2023-28252Local Privilege Escalation in Microsoft Windows Common Log File System Driver
LPE7.8
Fix Soon
CVE-2020-1472Microsoft Netlogon Privilege Escalation Vulnerability
LPE5.5
Fix Soon
CVE-2025-33073Local Privilege Escalation in Microsoft Windows SMB Client
LPE8.8
Fix Soon
CVE-2026-41091Local Privilege Escalation in Microsoft Defender
LPE7.8
Fix Soon
CVE-2010-0806Remote Code Execution in Microsoft Internet Explorer
RCE9.3
Fix Soon
CVE-2008-4250Remote Code Execution in Windows
RCE10.0
Fix Soon
CVE-2020-17103Local Privilege Escalation in Windows Cloud Files Mini Filter Driver
LPE7.0
Fix Soon
CVE-2023-36036Local Privilege Escalation in Microsoft Windows Cloud Files Mini Filter Driver
LPE7.8
Fix Soon
CVE-2017-0144Remote Code Execution in Microsoft Windows SMBv1 Server
RCE8.8
Planned Fix
CVE-2013-3900Microsoft WinVerifyTrust function Remote Code Execution
RCE5.5
Planned Fix
CVE-2022-30190Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability
RCE7.8
Planned Fix
CVE-2023-32046Local Privilege Escalation in Microsoft Windows
LPE7.8
Planned Fix
CVE-2026-21513Microsoft MSHTML Framework Protection Mechanism Failure Vulnerability
Unknown8.8
Planned Fix
CVE-2026-45659Remote Code Execution in Microsoft SharePoint Server
RCE8.8
Planned Fix
CVE-2026-45498Denial of Service in Microsoft Defender
DoS4.0
Planned Fix
CVE-2026-45585Data Disclosure in Microsoft BitLocker
Unknown6.8
Planned Fix
CVE-2010-0249Remote Code Execution in Microsoft Internet Explorer
RCE8.8
Planned Fix
CVE-2026-33825Local Privilege Escalation in Microsoft Defender Antimalware Platform
LPE7.8
Planned Fix
CVE-2026-42897Cross-Site Scripting in Microsoft Exchange Server
XSS8.1
Planned Fix
CVE-2026-40361Remote Code Execution in Microsoft Word
RCE8.4
Planned Fix
CVE-2026-35421Remote Code Execution in Microsoft Windows GDI
RCE7.8
Planned Fix
CVE-2026-26030Remote Code Execution in Microsoft Semantic Kernel
RCE9.9
Planned Fix
CVE-2026-25592Path Traversal in Microsoft Semantic Kernel
Path9.9
Planned Fix
CVE-2021-27065Remote Code Execution in Microsoft Exchange Server
RCE7.8
Planned Fix
CVE-2021-26858Remote Code Execution in Microsoft Exchange Server
RCE7.8
Planned Fix
CVE-2021-26857Remote Code Execution in Microsoft Exchange Server
RCE7.8
Planned Fix
CVE-2026-32202Authentication Bypass in Microsoft Windows Shell
Authentication4.3
Planned Fix
CVE-2026-21510Microsoft Windows Shell Protection Mechanism Failure Vulnerability
Unknown8.8
Planned Fix
CVE-2026-40372Microsoft Pre-Auth Auth Bypass in ASP.NET Core DataProtection
Authentication9.1
Planned Fix
CVE-2026-33826Microsoft Windows Active Directory RCE via RPC
RCE8.0
Planned Fix
CVE-2026-23666Microsoft .NET Framework Pre-Auth DoS
DoS7.5
Planned Fix
CVE-2026-21520Microsoft Copilot Studio Pre-Auth Info Disclosure
Unknown7.5
Planned Fix
CVE-2009-0238Microsoft Excel Pre-Auth RCE via crafted XLS
RCE8.8
Planned Fix
CVE-2023-36424Windows CLFS driver LPE
LPE7.8
Planned Fix
CVE-2025-60710Local Privilege Escalation in Host Process for Windows Tasks
LPE7.8
Planned Fix
CVE-2012-1854VBA insecure library loading RCE (user-assisted)
RCE7.8
Planned Fix
CVE-2023-21529Exchange PowerShell deserialization RCE (authenticated)
RCE8.8
Planned Fix
CVE-2026-21509Microsoft Office security feature bypass
Unknown7.8
Planned Fix
CVE-2026-21514Word Security Feature Bypass
7.8
Planned Fix
CVE-2024-30088TOCTOU Windows Kernel Privilege Escalation
update7.0
CVE-2024-49039Microsoft Windows Task Scheduler Privilege Escalation Vulnerability
8.8
CVE-2013-3163Microsoft Internet Explorer Memory Corruption Vulnerability
8.8
CVE-2023-21715Microsoft Office Publisher Security Feature Bypass Vulnerability
7.3
CVE-2021-33771Microsoft Windows Kernel Privilege Escalation Vulnerability
7.8
CVE-2021-31201Microsoft Enhanced Cryptographic Provider Privilege Escalation Vulnerability
5.2
CVE-2017-7269Microsoft Windows Server Buffer Overflow Vulnerability
9.8
CVE-2022-41125Microsoft Windows CNG Key Isolation Service Privilege Escalation Vulnerability
7.8
CVE-2022-41128Microsoft Windows Scripting Languages Remote Code Execution Vulnerability
8.8
CVE-2022-41082Microsoft Exchange Server Remote Code Execution Vulnerability
8.0
CVE-2022-37969Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability
7.8
CVE-2022-26923Microsoft Active Directory Domain Services Privilege Escalation Vulnerability
8.8
CVE-2022-34713Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability
7.8
CVE-2022-26925Microsoft Windows LSA Spoofing Vulnerability
8.1
CVE-2013-1331Microsoft Office Buffer Overflow Vulnerability
7.8
CVE-2012-0151Microsoft Windows Authenticode Signature Verification Remote Code Execution Vulnerability
7.8
CVE-2009-0563Microsoft Office Buffer Overflow Vulnerability
7.8
CVE-2009-0557Microsoft Office Object Record Corruption Vulnerability
7.8
CVE-2016-3393Microsoft Windows Graphics Device Interface (GDI) Remote Code Execution Vulnerability
7.8
CVE-2016-7256Microsoft Windows Open Type Font Remote Code Execution Vulnerability
8.8
CVE-2015-2425Microsoft Internet Explorer Memory Corruption Vulnerability
8.8
CVE-2015-1769Microsoft Windows Mount Manager Privilege Escalation Vulnerability
6.6
CVE-2015-1671Microsoft Windows Remote Code Execution Vulnerability
7.8
CVE-2014-4123Microsoft Internet Explorer Privilege Escalation Vulnerability
8.8
CVE-2021-40450Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2014-4077Microsoft IME Japanese Privilege Escalation Vulnerability
7.8
CVE-2013-7331Microsoft Internet Explorer Information Disclosure Vulnerability
6.5
CVE-2013-3896Microsoft Silverlight Information Disclosure Vulnerability
5.5
CVE-2013-0074Microsoft Silverlight Double Dereference Vulnerability
7.8
CVE-2018-8611Microsoft Windows Kernel Privilege Escalation Vulnerability
7.8
CVE-2017-0022Microsoft XML Core Services Information Disclosure Vulnerability
6.5
CVE-2017-0149Microsoft Internet Explorer Memory Corruption Vulnerability
8.8
CVE-2017-0210Microsoft Internet Explorer Privilege Escalation Vulnerability
8.8
CVE-2017-8543Microsoft Windows Search Remote Code Execution Vulnerability
9.8
CVE-2016-0162Microsoft Internet Explorer Information Disclosure Vulnerability
4.3
CVE-2020-1027Microsoft Windows Kernel Privilege Escalation Vulnerability
7.8
CVE-2020-0638Microsoft Update Notification Manager Privilege Escalation Vulnerability
7.8
CVE-2021-38649Microsoft Open Management Infrastructure (OMI) Privilege Escalation Vulnerability
7.0
CVE-2019-0880Microsoft Windows Privilege Escalation Vulnerability
7.8
CVE-2014-4113Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2012-0158Microsoft MSCOMCTL.OCX Remote Code Execution Vulnerability
8.8
CVE-2015-1641Microsoft Office Memory Corruption Vulnerability
7.8
CVE-2020-1380Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability
7.8
CVE-2021-1675Microsoft Windows Print Spooler Remote Code Execution Vulnerability
7.8
CVE-2020-0601Microsoft Windows CryptoAPI Spoofing Vulnerability
8.1
CVE-2019-0604Microsoft SharePoint Remote Code Execution Vulnerability
9.8
CVE-2022-24521Microsoft Windows CLFS Driver Privilege Escalation Vulnerability
7.8
CVE-2025-62215Microsoft Windows Race Condition Vulnerability
7.0
CVE-2015-2502Microsoft Internet Explorer Memory Corruption Vulnerability
8.8
CVE-2020-0938Microsoft Windows Adobe Font Manager Library Remote Code Execution Vulnerability
7.8
CVE-2021-43226Microsoft Windows Privilege Escalation Vulnerability
7.8
CVE-2017-0148Microsoft SMBv1 Server Remote Code Execution Vulnerability
8.1
CVE-2021-34484Microsoft Windows User Profile Service Privilege Escalation Vulnerability
7.8
CVE-2019-0541Microsoft MSHTML Remote Code Execution Vulnerability
8.8
CVE-2021-34486Microsoft Windows Event Tracing Privilege Escalation Vulnerability
7.8
CVE-2020-0986Microsoft Windows Kernel Privilege Escalation Vulnerability
7.8
CVE-2025-24054Microsoft Windows NTLM Hash Disclosure Spoofing Vulnerability
6.5
CVE-2007-0671Microsoft Office Excel Remote Code Execution Vulnerability
8.8
CVE-2013-3893Microsoft Internet Explorer Resource Management Errors Vulnerability
8.8
CVE-2018-8406Microsoft DirectX Graphics Kernel Privilege Escalation Vulnerability
7.8
CVE-2018-8405Microsoft DirectX Graphics Kernel Privilege Escalation Vulnerability
7.8
CVE-2025-24985Microsoft Windows Fast FAT File System Driver Integer Overflow Vulnerability
7.8
CVE-2017-0037Microsoft Edge and Internet Explorer Type Confusion Vulnerability
8.1
CVE-2016-7200Microsoft Edge Memory Corruption Vulnerability
8.8
CVE-2016-0151Microsoft Windows CSRSS Security Feature Bypass Vulnerability
7.8
CVE-2015-2426Microsoft Windows Adobe Type Manager Library Remote Code Execution Vulnerability
8.8
CVE-2015-1770Microsoft Office Uninitialized Memory Use Vulnerability
8.8
CVE-2013-2551Microsoft Internet Explorer Use-After-Free Vulnerability
8.8
CVE-2026-20963Microsoft SharePoint Deserialization of Untrusted Data Vulnerability
9.8
CVE-2010-4398Microsoft Windows Kernel Stack-Based Buffer Overflow Vulnerability
7.8
CVE-2020-0674Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability
7.5
CVE-2024-43468Microsoft Configuration Manager SQL Injection Vulnerability
9.8
CVE-2026-21525Microsoft Windows NULL Pointer Dereference Vulnerability
6.2
CVE-2026-21533Microsoft Windows Improper Privilege Management Vulnerability
7.8
CVE-2026-21519Microsoft Windows Type Confusion Vulnerability
7.8
CVE-2017-0143Microsoft Windows Server Message Block (SMBv1) Remote Code Execution Vulnerability
8.8
CVE-2021-34473Microsoft Exchange Server Remote Code Execution Vulnerability
9.1
CVE-2026-20805Microsoft Windows Information Disclosure Vulnerability
5.5
CVE-2019-0903Microsoft GDI Remote Code Execution Vulnerability
8.8
CVE-2018-8414Microsoft Windows Shell Remote Code Execution Vulnerability
8.8
CVE-2018-8373Microsoft Scripting Engine Memory Corruption Vulnerability
7.5
CVE-2008-0015 Microsoft Windows Video ActiveX Control Remote Code Execution Vulnerability
8.8
CVE-2021-31207Microsoft Exchange Server Security Feature Bypass Vulnerability
6.6
CVE-2009-0556Microsoft Office PowerPoint Code Injection Vulnerability
8.8
CVE-2025-62221Microsoft Windows Use After Free Vulnerability
7.8
CVE-2019-1367Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability
7.5
CVE-2021-36955Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability
7.8
CVE-2025-59287Microsoft Windows Server Update Service (WSUS) Deserialization of Untrusted Data Vulnerability
9.8
CVE-2025-24990Microsoft Windows Untrusted Pointer Dereference Vulnerability
7.8
CVE-2025-59230Microsoft Windows Improper Access Control Vulnerability
7.8
CVE-2010-3962Microsoft Internet Explorer Uninitialized Memory Corruption Vulnerability
8.1
CVE-2013-3918Microsoft Windows Out-of-Bounds Write Vulnerability
8.8
CVE-2011-3402Microsoft Windows Remote Code Execution Vulnerability
8.8
CVE-2021-38648Microsoft Open Management Infrastructure (OMI) Privilege Escalation Vulnerability
7.8
CVE-2025-32709Microsoft Windows Ancillary Function Driver for WinSock Use-After-Free Vulnerability
7.8
CVE-2025-32706Microsoft Windows Common Log File System (CLFS) Driver Heap-Based Buffer Overflow Vulnerability
7.8
CVE-2023-21674Microsoft Windows Advanced Local Procedure Call (ALPC) Privilege Escalation Vulnerability
8.8
CVE-2025-33053 Microsoft Windows External Control of File Name or Path Vulnerability
8.8
CVE-2025-30400Microsoft Windows DWM Core Library Use-After-Free Vulnerability
7.8
CVE-2014-6324Microsoft Kerberos Key Distribution Center (KDC) Privilege Escalation Vulnerability
8.8
CVE-2025-30397Microsoft Windows Scripting Engine Type Confusion Vulnerability
7.5
CVE-2025-32701Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability
7.8
CVE-2025-29824Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability
7.8
CVE-2019-1315Microsoft Windows Error Reporting Manager Privilege Escalation Vulnerability
7.8
CVE-2019-0803Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2019-1132Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2025-24983Microsoft Windows Win32k Use-After-Free Vulnerability
7.0
CVE-2019-1129Microsoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability
7.8
CVE-2019-1064Microsoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability
7.8
CVE-2019-0543Microsoft Windows Privilege Escalation Vulnerability
7.8
CVE-2016-3309Microsoft Windows Kernel Privilege Escalation Vulnerability
7.8
CVE-2015-2546Microsoft Win32k Memory Corruption Vulnerability
8.2
CVE-2024-49035Microsoft Partner Center Improper Access Control Vulnerability
8.7
CVE-2025-24989Microsoft Power Pages Improper Access Control Vulnerability
8.2
CVE-2025-21418Microsoft Windows Ancillary Function Driver for WinSock Heap-Based Buffer Overflow Vulnerability
7.8
CVE-2024-21413Microsoft Outlook Improper Input Validation Vulnerability
9.8
CVE-2024-29059Microsoft .NET Framework Information Disclosure Vulnerability
7.5
CVE-2025-21334Microsoft Windows Hyper-V NT Kernel Integration VSP Use-After-Free Vulnerability
7.8
CVE-2025-21333Microsoft Windows Hyper-V NT Kernel Integration VSP Heap-based Buffer Overflow Vulnerability
7.8
CVE-2024-38094Microsoft SharePoint Deserialization Vulnerability
7.2
CVE-2024-43573Microsoft Windows MSHTML Platform Spoofing Vulnerability
6.5
CVE-2022-26904Microsoft Windows User Profile Service Privilege Escalation Vulnerability
7.0
CVE-2020-0618Microsoft SQL Server Reporting Services Remote Code Execution Vulnerability
8.8
CVE-2024-38217Microsoft Windows Mark of the Web (MOTW) Protection Mechanism Failure Vulnerability
5.4
CVE-2024-38226Microsoft Publisher Protection Mechanism Failure Vulnerability
7.3
CVE-2021-31196Microsoft Exchange Server Information Disclosure Vulnerability
7.2
CVE-2024-38106Microsoft Windows Kernel Privilege Escalation Vulnerability
7.0
CVE-2024-38213Microsoft Windows SmartScreen Security Feature Bypass Vulnerability
6.5
CVE-2024-38189Microsoft Project Remote Code Execution Vulnerability
8.8
CVE-2012-4792Microsoft Internet Explorer Use-After-Free Vulnerability
8.8
CVE-2024-38080Microsoft Windows Hyper-V Privilege Escalation Vulnerability
7.8
CVE-2024-38112Microsoft Windows MSHTML Platform Spoofing Vulnerability
7.5
CVE-2017-0001Microsoft Graphics Device Interface (GDI) Privilege Escalation Vulnerability
7.8
CVE-2024-29988Microsoft SmartScreen Prompt Security Feature Bypass Vulnerability
8.8
CVE-2012-1889Microsoft XML Core Services Memory Corruption Vulnerability
8.8
CVE-2022-21919Microsoft Windows User Profile Service Privilege Escalation Vulnerability
7.0
CVE-2024-21338Microsoft Windows Kernel Exposed IOCTL with Insufficient Access Control Vulnerability
7.8
CVE-2023-29360Microsoft Streaming Service Untrusted Pointer Dereference Vulnerability
8.4
CVE-2024-21410Microsoft Exchange Server Privilege Escalation Vulnerability
9.8
CVE-2024-21351Microsoft Windows SmartScreen Security Feature Bypass Vulnerability
7.6
CVE-2015-1642Microsoft Office Memory Corruption Vulnerability
7.8
CVE-2014-4114Microsoft Windows Object Linking & Embedding (OLE) Remote Code Execution Vulnerability
7.8
CVE-2013-5065Microsoft Windows Kernel Privilege Escalation Vulnerability
7.8
CVE-2023-29357Microsoft SharePoint Server Privilege Escalation Vulnerability
9.8
CVE-2012-1856Microsoft Office MSCOMCTL.OCX Remote Code Execution Vulnerability
8.8
CVE-2011-1889Microsoft Forefront TMG Remote Code Execution Vulnerability
9.8
CVE-2023-36025Microsoft Windows SmartScreen Security Feature Bypass Vulnerability
8.8
CVE-2010-3333Microsoft Office Stack-based Buffer Overflow Vulnerability
7.8
CVE-2002-0367Microsoft Windows Privilege Escalation Vulnerability
7.8
CVE-2017-8570Microsoft Office Remote Code Execution Vulnerability
7.8
CVE-2014-6352Microsoft Windows Code Injection Vulnerability
7.8
CVE-2023-36563Microsoft WordPad Information Disclosure Vulnerability
6.5
CVE-2023-28229Microsoft Windows CNG Key Isolation Service Privilege Escalation Vulnerability
7.0
CVE-2018-8174Microsoft Windows VBScript Engine Out-of-Bounds Write Vulnerability
7.5
CVE-2023-38180Microsoft .NET Core and Visual Studio Denial-of-Service Vulnerability
7.5
CVE-2014-1761Microsoft Word Memory Corruption Vulnerability
7.8
CVE-2017-0199Microsoft Office and WordPad Remote Code Execution Vulnerability
7.8
CVE-2015-2360Microsoft Win32k Privilege Escalation Vulnerability
8.8
CVE-2023-35311Microsoft Outlook Security Feature Bypass Vulnerability
8.8
CVE-2020-0796Microsoft SMBv3 Remote Code Execution Vulnerability
10.0
CVE-2020-1350Microsoft Windows DNS Server Remote Code Execution Vulnerability
10.0
CVE-2017-8464Microsoft Windows Shell (.lnk) Remote Code Execution Vulnerability
8.8
CVE-2017-0263Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2017-0262Microsoft Office Remote Code Execution Vulnerability
7.8
CVE-2015-1635Microsoft HTTP.sys Remote Code Execution Vulnerability
9.8
CVE-2023-29336Microsoft Win32K Privilege Escalation Vulnerability
7.8
CVE-2019-0859Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2020-0787Microsoft Windows Background Intelligent Transfer Service (BITS) Improper Privilege Management Vulnerability
7.8
CVE-2017-11774Microsoft Office Outlook Security Feature Bypass Vulnerability
7.8
CVE-2014-1776Microsoft Internet Explorer Memory Corruption Vulnerability
9.8
CVE-2018-8453Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2023-23397Microsoft Office Outlook Privilege Escalation Vulnerability
9.8
CVE-2023-24880Microsoft Windows SmartScreen Security Feature Bypass Vulnerability
4.4
CVE-2021-33766Microsoft Exchange Server Information Disclosure
7.3
CVE-2017-8759Microsoft .NET Framework Remote Code Execution Vulnerability
7.8
CVE-2023-23376Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability
7.8
CVE-2023-21823Microsoft Windows Graphic Component Privilege Escalation Vulnerability
7.8
CVE-2022-41080Microsoft Exchange Server Privilege Escalation Vulnerability
8.8
CVE-2022-44698Microsoft Defender SmartScreen Security Feature Bypass Vulnerability
5.4
CVE-2022-41049Microsoft Windows Mark of the Web (MOTW) Security Feature Bypass Vulnerability
5.4
CVE-2022-41091Microsoft Windows Mark of the Web (MOTW) Security Feature Bypass Vulnerability
5.4
CVE-2022-41073Microsoft Windows Print Spooler Privilege Escalation Vulnerability
7.8
CVE-2019-0797Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2019-1458Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2022-41033Microsoft Windows COM+ Event System Service Privilege Escalation Vulnerability
7.8
CVE-2022-41040Microsoft Exchange Server Server-Side Request Forgery Vulnerability
8.8
CVE-2010-2568Microsoft Windows Remote Code Execution Vulnerability
7.8
CVE-2022-21971Microsoft Windows Runtime Remote Code Execution Vulnerability
7.8
CVE-2022-22047Microsoft Windows Client Server Runtime Subsystem (CSRSS) Privilege Escalation Vulnerability
7.8
CVE-2012-4969Microsoft Internet Explorer Use-After-Free Vulnerability
8.1
CVE-2010-2572Microsoft PowerPoint Buffer Overflow Vulnerability
7.8
CVE-2006-2492Microsoft Word Malformed Object Pointer Vulnerability
8.8
CVE-2016-0034Microsoft Silverlight Runtime Remote Code Execution Vulnerability
8.8
CVE-2015-0016Microsoft Windows TS WebProxy Directory Traversal Vulnerability
7.8
CVE-2015-0071Microsoft Internet Explorer ASLR Bypass Vulnerability
6.5
CVE-2015-6175Microsoft Windows Kernel Privilege Escalation Vulnerability
7.8
CVE-2014-4148Microsoft Windows Remote Code Execution Vulnerability
8.8
CVE-2014-2817Microsoft Internet Explorer Privilege Escalation Vulnerability
8.8
CVE-2019-1215Microsoft Windows Privilege Escalation Vulnerability
7.8
CVE-2017-0147Microsoft Windows SMBv1 Information Disclosure Vulnerability
7.5
CVE-2017-0005Microsoft Windows Graphics Device Interface (GDI) Privilege Escalation Vulnerability
7.8
CVE-2016-3351Microsoft Internet Explorer and Edge Information Disclosure Vulnerability
6.5
CVE-2021-42321Microsoft Exchange Server Remote Code Execution Vulnerability
8.8
CVE-2016-3298Microsoft Internet Explorer Messaging API Information Disclosure Vulnerability
6.5
CVE-2019-0808Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2019-0676Microsoft Internet Explorer Information Disclosure Vulnerability
6.5
CVE-2019-0703Microsoft Windows SMB Information Disclosure Vulnerability
6.5
CVE-2019-1385Microsoft Windows AppX Deployment Extensions Privilege Escalation Vulnerability
7.8
CVE-2019-1130Microsoft Windows AppX Deployment Service Privilege Escalation Vulnerability
7.8
CVE-2018-8589Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2014-0322Microsoft Internet Explorer Use-After-Free Vulnerability
8.8
CVE-2021-41357Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2022-22718Microsoft Windows Print Spooler Privilege Escalation Vulnerability
7.8
CVE-2021-42287Microsoft Active Directory Domain Services Privilege Escalation Vulnerability
7.5
CVE-2021-42278Microsoft Active Directory Domain Services Privilege Escalation Vulnerability
7.5
CVE-2021-31166Microsoft HTTP Protocol Stack Remote Code Execution Vulnerability
9.8
CVE-2021-38646Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability
7.8
CVE-2018-8440Microsoft Windows Privilege Escalation Vulnerability
7.8
CVE-2017-0213Microsoft Windows Privilege Escalation Vulnerability
7.3
CVE-2017-0059Microsoft Internet Explorer Information Disclosure Vulnerability
4.3
CVE-2016-7201Microsoft Edge Memory Corruption Vulnerability
8.8
CVE-2016-0189Microsoft Internet Explorer Memory Corruption Vulnerability
7.5
CVE-2016-0040Microsoft Windows Kernel Privilege Escalation Vulnerability
7.8
CVE-2015-2419Microsoft Internet Explorer Memory Corruption Vulnerability
8.8
CVE-2013-3660Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2012-2539Microsoft Word Remote Code Execution Vulnerability
7.8
CVE-2011-2005Microsoft Ancillary Function Driver (afd.sys) Improper Input Validation Vulnerability
7.8
CVE-2022-21999Microsoft Windows Print Spooler Privilege Escalation Vulnerability
7.8
CVE-2017-0146Microsoft Windows SMB Remote Code Execution Vulnerability
8.8
CVE-2014-6332Microsoft Windows Object Linking & Embedding (OLE) Automation Array Remote Code Execution Vulnerability
8.8
CVE-2019-1405Microsoft Windows Universal Plug and Play (UPnP) Service Privilege Escalation Vulnerability
7.8
CVE-2019-1322Microsoft Windows Privilege Escalation Vulnerability
7.8
CVE-2019-1253Microsoft Windows AppX Deployment Server Privilege Escalation Vulnerability
7.8
CVE-2019-1069Microsoft Task Scheduler Privilege Escalation Vulnerability
7.8
CVE-2019-0841Microsoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability
7.8
CVE-2018-8120Microsoft Win32k Privilege Escalation Vulnerability
7.0
CVE-2017-0101Microsoft Windows Transaction Manager Privilege Escalation Vulnerability
7.8
CVE-2021-41379Microsoft Windows Installer Privilege Escalation Vulnerability
5.5
CVE-2019-1297Microsoft Excel Remote Code Execution Vulnerability
8.8
CVE-2018-8581Microsoft Exchange Server Privilege Escalation Vulnerability
7.4
CVE-2017-8540Microsoft Malware Protection Engine Improper Restriction of Operations Vulnerability
7.8
CVE-2017-11826Microsoft Office Remote Code Execution Vulnerability
7.8
CVE-2017-0261Microsoft Office Use-After-Free Vulnerability
7.8
CVE-2016-7262Microsoft Office Security Feature Bypass Vulnerability
7.8
CVE-2016-7193Microsoft Office Memory Corruption Vulnerability
7.8
CVE-2016-0099Microsoft Windows Secondary Logon Service Privilege Escalation Vulnerability
7.8
CVE-2015-2545Microsoft Office Malformed EPS File Vulnerability
7.8
CVE-2015-2424Microsoft PowerPoint Memory Corruption Vulnerability
8.8
CVE-2015-2387Microsoft ATM Font Driver Privilege Escalation Vulnerability
7.8
CVE-2015-1701Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2013-3897Microsoft Internet Explorer Use-After-Free Vulnerability
8.8
CVE-2013-1347Microsoft Internet Explorer Remote Code Execution Vulnerability
8.8
CVE-2010-0232Microsoft Windows Kernel Exception Handler Vulnerability
7.8
CVE-2009-3129Microsoft Excel Featheader Record Memory Corruption Vulnerability
7.8
CVE-2009-1123Microsoft Windows Improper Input Validation Vulnerability
7.8
CVE-2004-0210Microsoft Windows Privilege Escalation Vulnerability
7.8
CVE-2017-0222Microsoft Internet Explorer Remote Code Execution Vulnerability
8.8
CVE-2019-0752Microsoft Internet Explorer Type Confusion Vulnerability
7.5
CVE-2013-3906Microsoft Graphics Component Memory Corruption Vulnerability
7.8
CVE-2021-36934Microsoft Windows SAM Local Privilege Escalation Vulnerability
7.8
CVE-2017-0145Microsoft SMBv1 Remote Code Execution Vulnerability
8.8
CVE-2022-21882Microsoft Win32k Privilege Escalation Vulnerability
7.0
CVE-2021-43890Microsoft Windows AppX Installer Spoofing Vulnerability
7.1
CVE-2021-40449Microsoft Windows Win32k Privilege Escalation Vulnerability
7.8
CVE-2021-42292Microsoft Excel Security Feature Bypass
7.8
CVE-2014-1812Microsoft Windows Group Policy Preferences Password Privilege Escalation Vulnerability
8.8
CVE-2016-0167Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2020-0878Microsoft Edge and Internet Explorer Memory Corruption Vulnerability
4.2
CVE-2021-1647Microsoft Defender Remote Code Execution Vulnerability
7.8
CVE-2016-0185Microsoft Windows Media Center Remote Code Execution Vulnerability
7.8
CVE-2020-17087Microsoft Windows Kernel Privilege Escalation Vulnerability
7.8
CVE-2021-33742Microsoft Windows MSHTML Platform Remote Code Execution Vulnerability
7.5
CVE-2021-31956Microsoft Windows NTFS Privilege Escalation Vulnerability
7.8
CVE-2021-31979Microsoft Windows Kernel Privilege Escalation Vulnerability
7.8
CVE-2020-17144Microsoft Exchange Server Remote Code Execution Vulnerability
8.4
CVE-2021-38645Microsoft Open Management Infrastructure (OMI) Privilege Escalation Vulnerability
7.8
CVE-2021-34523Microsoft Exchange Server Privilege Escalation Vulnerability
9.0
CVE-2021-36948Microsoft Windows Update Medic Service Privilege Escalation Vulnerability
7.8
CVE-2020-0688Microsoft Exchange Server Validation Key Remote Code Execution Vulnerability
8.8
CVE-2016-7255Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2019-0708Microsoft Remote Desktop Services Remote Code Execution Vulnerability
9.8
CVE-2020-1464Microsoft Windows Spoofing Vulnerability
7.8
CVE-2021-1732Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2021-34527Microsoft Windows Print Spooler Remote Code Execution Vulnerability
8.8
CVE-2020-1040Microsoft Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability
9.0
CVE-2021-28310Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2021-26411Microsoft Internet Explorer Memory Corruption Vulnerability
8.8
CVE-2021-40444Microsoft MSHTML Remote Code Execution Vulnerability
8.8
CVE-2018-8653Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability
7.5
CVE-2021-36942Microsoft Windows Local Security Authority (LSA) Spoofing Vulnerability
7.5
CVE-2018-0798Microsoft Office Memory Corruption Vulnerability
8.8
CVE-2018-0802Microsoft Office Memory Corruption Vulnerability
7.8
CVE-2021-27085Microsoft Internet Explorer Remote Code Execution Vulnerability
8.8
CVE-2017-11882Microsoft Office Memory Corruption Vulnerability
7.8
CVE-2021-27059Microsoft Office Remote Code Execution Vulnerability
7.6
CVE-2019-1429Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability
7.5
CVE-2020-0968Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability
7.5
CVE-2020-1054Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2021-34448Microsoft Windows Scripting Engine Memory Corruption Vulnerability
6.8
CVE-2019-0863Microsoft Windows Error Reporting (WER) Privilege Escalation Vulnerability
7.8
CVE-2020-0646Microsoft .NET Framework Remote Code Execution Vulnerability
9.8
CVE-2020-1147Microsoft .NET Framework, SharePoint, and Visual Studio Remote Code Execution Vulnerability
7.8
CVE-2016-3235Microsoft Office OLE DLL Side Loading Vulnerability
7.8
CVE-2025-49704Microsoft SharePoint Code Injection Vulnerability
8.8
CVE-2025-49706Microsoft SharePoint Improper Authentication Vulnerability
6.5
CVE-2025-53770Microsoft SharePoint Deserialization of Untrusted Data Vulnerability
9.8
CVE-2025-24991Microsoft Windows NTFS Out-Of-Bounds Read Vulnerability
5.5
CVE-2025-24984Microsoft Windows NTFS Information Disclosure Vulnerability
4.6
CVE-2025-26633Microsoft Windows Management Console (MMC) Improper Neutralization Vulnerability
7.0
CVE-2024-35250Microsoft Windows Kernel-Mode Driver Untrusted Pointer Dereference Vulnerability
7.8
CVE-2024-49138Microsoft Windows Common Log File System (CLFS) Driver Heap-Based Buffer Overflow Vulnerability
7.8
CVE-2019-1214Microsoft Windows Privilege Common Log File System (CLFS) Escalation Vulnerability
7.8
CVE-2024-43451Microsoft Windows NTLMv2 Hash Disclosure Spoofing Vulnerability
6.5
CVE-2024-43461Microsoft Windows MSHTML Platform Spoofing Vulnerability
8.8
CVE-2024-38014Microsoft Windows Installer Improper Privilege Management Vulnerability
7.8
CVE-2024-38193Microsoft Windows Ancillary Function Driver for WinSock Privilege Escalation Vulnerability
7.8
CVE-2024-38178Microsoft Windows Scripting Engine Memory Corruption Vulnerability
7.5
CVE-2018-0824Microsoft COM for Windows Deserialization of Untrusted Data Vulnerability
8.8
CVE-2024-26169Microsoft Windows Error Reporting Service Improper Privilege Management Vulnerability
7.8
CVE-2023-41763Microsoft Skype for Business Privilege Escalation Vulnerability
5.3
CVE-2024-30051 Microsoft DWM Core Library Privilege Escalation Vulnerability
7.8
CVE-2022-38028Microsoft Windows Print Spooler Privilege Escalation Vulnerability
7.8
CVE-2023-24955Microsoft SharePoint Server Code Injection Vulnerability
7.2
CVE-2021-38647Microsoft Open Management Infrastructure (OMI) Remote Code Execution Vulnerability
9.8
CVE-2021-31955Microsoft Windows Kernel Information Disclosure Vulnerability
5.5
CVE-2024-21412Microsoft Windows Internet Shortcut Files Security Feature Bypass Vulnerability
8.1
CVE-2025-21335Microsoft Windows Hyper-V NT Kernel Integration VSP Use-After-Free Vulnerability
7.8
CVE-2025-24993Microsoft Windows NTFS Heap-Based Buffer Overflow Vulnerability
7.8
CVE-2018-8639Microsoft Windows Win32k Improper Resource Shutdown or Release Vulnerability
7.8
CVE-2025-21391Microsoft Windows Storage Link Following Vulnerability
7.1
CVE-2024-43572Microsoft Windows Management Console Remote Code Execution Vulnerability
7.8
CVE-2021-33739Microsoft Desktop Window Manager (DWM) Core Library Privilege Escalation Vulnerability
8.4
CVE-2024-38107Microsoft Windows Power Dependency Coordinator Privilege Escalation Vulnerability
7.8
CVE-2024-30040Microsoft Windows MSHTML Platform Security Feature Bypass Vulnerability
8.8
CVE-2020-0683Microsoft Windows Installer Privilege Escalation Vulnerability
7.8
CVE-2020-1020Microsoft Windows Adobe Font Manager Library Remote Code Execution Vulnerability
8.8
CVE-2023-36584Microsoft Windows Mark of the Web (MOTW) Security Feature Bypass Vulnerability
5.4
CVE-2023-36033Microsoft Windows Desktop Window Manager (DWM) Core Library Privilege Escalation Vulnerability
7.8
CVE-2023-36761Microsoft Word Information Disclosure Vulnerability
6.5
CVE-2023-36802Microsoft Streaming Service Proxy Privilege Escalation Vulnerability
7.8
CVE-2023-36884Microsoft Windows Search Remote Code Execution Vulnerability
7.5
CVE-2023-32049Microsoft Windows Defender SmartScreen Security Feature Bypass Vulnerability
8.8
CVE-2016-0165Microsoft Win32k Privilege Escalation Vulnerability
7.8
CVE-2021-31199Microsoft Enhanced Cryptographic Provider Privilege Escalation Vulnerability
5.2
CVE-2019-1388Microsoft Windows Certificate Dialog Privilege Escalation Vulnerability
7.8