Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2025-27473
HTTP.sys Denial of Service Vulnerability
Description: Uncontrolled resource consumption in Windows HTTP.sys allows an unauthorized attacker to deny service over a network.

CVSS: HIGH (7.5)

EPSS Score: 2.14%

Source: CVE
April 8th, 2025 (about 2 months ago)

CVE-2025-27470
Windows Standards-Based Storage Management Service Denial of Service Vulnerability
Description: Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.

CVSS: HIGH (7.5)

EPSS Score: 2.14%

Source: CVE
April 8th, 2025 (about 2 months ago)

CVE-2025-27469
Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability
Description: Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.

CVSS: HIGH (7.5)

EPSS Score: 2.14%

Source: CVE
April 8th, 2025 (about 2 months ago)

CVE-2025-27467
Windows Digital Media Elevation of Privilege Vulnerability
Description: Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
April 8th, 2025 (about 2 months ago)

CVE-2025-26688
Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability
Description: Stack-based buffer overflow in Microsoft Virtual Hard Drive allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
April 8th, 2025 (about 2 months ago)

CVE-2025-26687
Win32k Elevation of Privilege Vulnerability
Description: Use after free in Windows Win32K - GRFX allows an unauthorized attacker to elevate privileges over a network.

CVSS: HIGH (7.5)

EPSS Score: 0.04%

Source: CVE
April 8th, 2025 (about 2 months ago)

CVE-2025-26686
Windows TCP/IP Remote Code Execution Vulnerability
Description: Sensitive data storage in improperly locked memory in Windows TCP/IP allows an unauthorized attacker to execute code over a network.

CVSS: HIGH (7.5)

EPSS Score: 0.13%

Source: CVE
April 8th, 2025 (about 2 months ago)

CVE-2025-26682
ASP.NET Core and Visual Studio Denial of Service Vulnerability
Description: Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network.

CVSS: HIGH (7.5)

EPSS Score: 2.14%

SSVC Exploitation: none

Source: CVE
April 8th, 2025 (about 2 months ago)

CVE-2025-26680
Windows Standards-Based Storage Management Service Denial of Service Vulnerability
Description: Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.

CVSS: HIGH (7.5)

EPSS Score: 2.14%

Source: CVE
April 8th, 2025 (about 2 months ago)

CVE-2025-26679
RPC Endpoint Mapper Service Elevation of Privilege Vulnerability
Description: Use after free in RPC Endpoint Mapper Service allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
April 8th, 2025 (about 2 months ago)