Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2025-29829
Windows Trusted Runtime Interface Driver Information Disclosure Vulnerability
Description: Use of uninitialized resource in Windows Trusted Runtime Interface Driver allows an authorized attacker to disclose information locally.

CVSS: MEDIUM (5.5)

EPSS Score: 0.11%

Source: CVE
May 13th, 2025 (25 days ago)

CVE-2025-29826
Microsoft Dataverse Elevation of Privilege Vulnerability
Description: Improper handling of insufficient permissions or privileges in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.

CVSS: HIGH (7.3)

EPSS Score: 0.05%

Source: CVE
May 13th, 2025 (25 days ago)

CVE-2025-27488
Microsoft Windows Hardware Lab Kit (HLK) Elevation of Privilege Vulnerability
Description: Use of hard-coded credentials in Windows Hardware Lab Kit allows an authorized attacker to elevate privileges locally.

CVSS: MEDIUM (6.7)

EPSS Score: 0.06%

Source: CVE
May 13th, 2025 (25 days ago)

CVE-2025-27468
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
Description: Improper privilege management in Windows Secure Kernel Mode allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.0)

EPSS Score: 0.04%

Source: CVE
May 13th, 2025 (25 days ago)

CVE-2025-26685
Microsoft Defender for Identity Spoofing Vulnerability
Description: Improper authentication in Microsoft Defender for Identity allows an unauthorized attacker to perform spoofing over an adjacent network.

CVSS: MEDIUM (6.5)

EPSS Score: 0.1%

Source: CVE
May 13th, 2025 (25 days ago)

CVE-2025-26684
Microsoft Defender Elevation of Privilege Vulnerability
Description: External control of file name or path in Microsoft Defender for Endpoint allows an authorized attacker to elevate privileges locally.

CVSS: MEDIUM (6.7)

EPSS Score: 0.17%

Source: CVE
May 13th, 2025 (25 days ago)

CVE-2025-26677
Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability
Description: Uncontrolled resource consumption in Remote Desktop Gateway Service allows an unauthorized attacker to deny service over a network.

CVSS: HIGH (7.5)

EPSS Score: 1.67%

Source: CVE
May 13th, 2025 (25 days ago)

CVE-2025-24063
Kernel Streaming Service Driver Elevation of Privilege Vulnerability
Description: Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
May 13th, 2025 (25 days ago)

CVE-2025-21264
Visual Studio Code Security Feature Bypass Vulnerability
Description: Files or directories accessible to external parties in Visual Studio Code allows an unauthorized attacker to bypass a security feature locally.

CVSS: HIGH (7.1)

EPSS Score: 0.07%

Source: CVE
May 13th, 2025 (25 days ago)
Windows 10 KB5058379 update fixes SgrmBroker errors in Event Viewer
Description: Microsoft has released the KB5058379 cumulative update for Windows 10 22H2 and Windows 10 21H2, with four fixes and changes, including one for an SGRMBroker bug. [...]
Source: BleepingComputer
May 13th, 2025 (25 days ago)