Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2025-24995
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
Description: Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
March 11th, 2025 (about 1 month ago)

CVE-2025-24994
Microsoft Windows Cross Device Service Elevation of Privilege Vulnerability
Description: Improper access control in Windows Cross Device Service allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.3)

EPSS Score: 0.05%

Source: CVE
March 11th, 2025 (about 1 month ago)

CVE-2025-24993
Windows NTFS Remote Code Execution Vulnerability
🚨 Marked as known exploited on March 11th, 2025 (about 1 month ago).
Description: Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally.

CVSS: HIGH (7.8)

EPSS Score: 4.05%

SSVC Exploitation: active

Source: CVE
March 11th, 2025 (about 1 month ago)

CVE-2025-24992
Windows NTFS Information Disclosure Vulnerability
Description: Buffer over-read in Windows NTFS allows an unauthorized attacker to disclose information locally.

CVSS: MEDIUM (5.5)

EPSS Score: 0.06%

Source: CVE
March 11th, 2025 (about 1 month ago)

CVE-2025-24991
Windows NTFS Information Disclosure Vulnerability
🚨 Marked as known exploited on March 11th, 2025 (about 1 month ago).
Description: Out-of-bounds read in Windows NTFS allows an authorized attacker to disclose information locally.

CVSS: MEDIUM (5.5)

EPSS Score: 2.97%

SSVC Exploitation: active

Source: CVE
March 11th, 2025 (about 1 month ago)

CVE-2025-24988
Windows USB Video Class System Driver Elevation of Privilege Vulnerability
Description: Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to elevate privileges with a physical attack.

CVSS: MEDIUM (6.6)

EPSS Score: 0.07%

Source: CVE
March 11th, 2025 (about 1 month ago)

CVE-2025-24987
Windows USB Video Class System Driver Elevation of Privilege Vulnerability
Description: Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to elevate privileges with a physical attack.

CVSS: MEDIUM (6.6)

EPSS Score: 0.07%

Source: CVE
March 11th, 2025 (about 1 month ago)

CVE-2025-24986
Azure Promptflow Remote Code Execution Vulnerability
Description: Improper isolation or compartmentalization in Azure PromptFlow allows an unauthorized attacker to execute code over a network.

CVSS: MEDIUM (6.5)

EPSS Score: 0.09%

Source: CVE
March 11th, 2025 (about 1 month ago)

CVE-2025-24985
Windows Fast FAT File System Driver Remote Code Execution Vulnerability
🚨 Marked as known exploited on March 11th, 2025 (about 1 month ago).
Description: Integer overflow or wraparound in Windows Fast FAT Driver allows an unauthorized attacker to execute code locally.

CVSS: HIGH (7.8)

EPSS Score: 9.81%

SSVC Exploitation: active

Source: CVE
March 11th, 2025 (about 1 month ago)

CVE-2025-24984
Windows NTFS Information Disclosure Vulnerability
🚨 Marked as known exploited on March 11th, 2025 (about 1 month ago).
Description: Insertion of sensitive information into log file in Windows NTFS allows an unauthorized attacker to disclose information with a physical attack.

CVSS: MEDIUM (4.6)

EPSS Score: 19.24%

SSVC Exploitation: active

Source: CVE
March 11th, 2025 (about 1 month ago)