Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2025-26687
Win32k Elevation of Privilege Vulnerability
Description: Use after free in Windows Win32K - GRFX allows an unauthorized attacker to elevate privileges over a network.

CVSS: HIGH (7.5)

EPSS Score: 0.04%

Source: CVE
April 8th, 2025 (14 days ago)

CVE-2025-26686
Windows TCP/IP Remote Code Execution Vulnerability
Description: Sensitive data storage in improperly locked memory in Windows TCP/IP allows an unauthorized attacker to execute code over a network.

CVSS: HIGH (7.5)

EPSS Score: 0.13%

Source: CVE
April 8th, 2025 (14 days ago)

CVE-2025-26682
ASP.NET Core and Visual Studio Denial of Service Vulnerability
Description: Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network.

CVSS: HIGH (7.5)

EPSS Score: 2.14%

SSVC Exploitation: none

Source: CVE
April 8th, 2025 (14 days ago)

CVE-2025-26680
Windows Standards-Based Storage Management Service Denial of Service Vulnerability
Description: Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.

CVSS: HIGH (7.5)

EPSS Score: 2.14%

Source: CVE
April 8th, 2025 (14 days ago)

CVE-2025-26679
RPC Endpoint Mapper Service Elevation of Privilege Vulnerability
Description: Use after free in RPC Endpoint Mapper Service allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
April 8th, 2025 (14 days ago)

CVE-2025-26678
Windows Defender Application Control Security Feature Bypass Vulnerability
Description: Improper access control in Windows Defender Application Control (WDAC) allows an unauthorized attacker to bypass a security feature locally.

CVSS: HIGH (8.4)

EPSS Score: 0.06%

Source: CVE
April 8th, 2025 (14 days ago)

CVE-2025-26675
Windows Subsystem for Linux Elevation of Privilege Vulnerability
Description: Out-of-bounds read in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
April 8th, 2025 (14 days ago)

CVE-2025-26674
Windows Media Remote Code Execution Vulnerability
Description: Heap-based buffer overflow in Windows Media allows an authorized attacker to execute code locally.

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
April 8th, 2025 (14 days ago)

CVE-2025-26673
Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability
Description: Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.

CVSS: HIGH (7.5)

EPSS Score: 2.14%

Source: CVE
April 8th, 2025 (14 days ago)

CVE-2025-26671
Windows Remote Desktop Services Remote Code Execution Vulnerability
Description: Use after free in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network.

CVSS: HIGH (8.1)

EPSS Score: 0.22%

Source: CVE
April 8th, 2025 (14 days ago)