Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2025-32706
Microsoft Windows Common Log File System (CLFS) Driver Heap-Based Buffer Overflow Vulnerability
Description: Microsoft Windows Common Log File System (CLFS) Driver contains a heap-based buffer overflow vulnerability that allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 10.51%

Source: CISA KEV
May 13th, 2025 (21 days ago)

CVE-2025-30397
Microsoft Windows Scripting Engine Type Confusion Vulnerability
Description: Microsoft Windows Scripting Engine contains a type confusion vulnerability that allows an unauthorized attacker to execute code over a network via a specially crafted URL.

CVSS: HIGH (7.5)

EPSS Score: 10.87%

Source: CISA KEV
May 13th, 2025 (21 days ago)

CVE-2025-32709
Microsoft Windows Ancillary Function Driver for WinSock Use-After-Free Vulnerability
Description: Microsoft Windows Ancillary Function Driver for WinSock contains a use-after-free vulnerability that allows an authorized attacker to escalate privileges to administrator.

CVSS: HIGH (7.8)

EPSS Score: 4.28%

Source: CISA KEV
May 13th, 2025 (21 days ago)

CVE-2025-32709
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
🚨 Marked as known exploited on May 13th, 2025 (21 days ago).
Description: Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 4.28%

Source: CVE
May 13th, 2025 (22 days ago)

CVE-2025-32707
NTFS Elevation of Privilege Vulnerability
Description: Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 0.06%

Source: CVE
May 13th, 2025 (22 days ago)

CVE-2025-32706
Windows Common Log File System Driver Elevation of Privilege Vulnerability
🚨 Marked as known exploited on May 13th, 2025 (21 days ago).
Description: Improper input validation in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 10.51%

Source: CVE
May 13th, 2025 (22 days ago)

CVE-2025-32705
Microsoft Outlook Remote Code Execution Vulnerability
Description: Out-of-bounds read in Microsoft Office Outlook allows an unauthorized attacker to execute code locally.

CVSS: HIGH (7.8)

EPSS Score: 0.06%

Source: CVE
May 13th, 2025 (22 days ago)

CVE-2025-32704
Microsoft Excel Remote Code Execution Vulnerability
Description: Buffer over-read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: HIGH (8.4)

EPSS Score: 0.05%

Source: CVE
May 13th, 2025 (22 days ago)

CVE-2025-32702
Visual Studio Remote Code Execution Vulnerability
Description: Improper neutralization of special elements used in a command ('command injection') in Visual Studio allows an unauthorized attacker to execute code locally.

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
May 13th, 2025 (22 days ago)

CVE-2025-32701
Windows Common Log File System Driver Elevation of Privilege Vulnerability
🚨 Marked as known exploited on May 13th, 2025 (21 days ago).
Description: Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 4.24%

Source: CVE
May 13th, 2025 (22 days ago)