Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2025-26628
Azure Local Cluster Information Disclosure Vulnerability
Description: Insufficiently protected credentials in Azure Local Cluster allows an authorized attacker to disclose information locally.

CVSS: HIGH (7.3)

EPSS Score: 0.05%

Source: CVE
April 8th, 2025 (11 days ago)

CVE-2025-24074
Microsoft DWM Core Library Elevation of Privilege Vulnerability
Description: Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 0.07%

Source: CVE
April 8th, 2025 (11 days ago)

CVE-2025-24073
Microsoft DWM Core Library Elevation of Privilege Vulnerability
Description: Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 0.07%

Source: CVE
April 8th, 2025 (11 days ago)

CVE-2025-24062
Microsoft DWM Core Library Elevation of Privilege Vulnerability
Description: Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 0.07%

SSVC Exploitation: none

Source: CVE
April 8th, 2025 (11 days ago)

CVE-2025-24060
Microsoft DWM Core Library Elevation of Privilege Vulnerability
Description: Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 0.07%

Source: CVE
April 8th, 2025 (11 days ago)

CVE-2025-24058
Windows DWM Core Library Elevation of Privilege Vulnerability
Description: Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 0.07%

Source: CVE
April 8th, 2025 (11 days ago)

CVE-2025-21222
Windows Telephony Service Remote Code Execution Vulnerability
Description: Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.

CVSS: HIGH (8.8)

EPSS Score: 0.06%

Source: CVE
April 8th, 2025 (11 days ago)

CVE-2025-21221
Windows Telephony Service Remote Code Execution Vulnerability
Description: Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.

CVSS: HIGH (8.8)

EPSS Score: 0.06%

Source: CVE
April 8th, 2025 (11 days ago)

CVE-2025-21205
Windows Telephony Service Remote Code Execution Vulnerability
Description: Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.

CVSS: HIGH (8.8)

EPSS Score: 0.06%

Source: CVE
April 8th, 2025 (11 days ago)

CVE-2025-21204
Windows Process Activation Elevation of Privilege Vulnerability
Description: Improper link resolution before file access ('link following') in Windows Update Stack allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 0.06%

Source: CVE
April 8th, 2025 (11 days ago)