Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2025-24075
Microsoft Excel Remote Code Execution Vulnerability
Description: Stack-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVSS: HIGH (7.8)

EPSS Score: 0.08%

Source: CVE
March 11th, 2025 (about 1 month ago)

CVE-2025-24072
Microsoft Local Security Authority (LSA) Server Elevation of Privilege Vulnerability
Description: Use after free in Microsoft Local Security Authority Server (lsasrv) allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
March 11th, 2025 (about 1 month ago)

CVE-2025-24071
Microsoft Windows File Explorer Spoofing Vulnerability
Description: Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network.

CVSS: HIGH (7.5)

EPSS Score: 36.15%

Source: CVE
March 11th, 2025 (about 1 month ago)

CVE-2025-24070
ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability
Description: Weak authentication in ASP.NET Core & Visual Studio allows an unauthorized attacker to elevate privileges over a network.

CVSS: HIGH (7.0)

EPSS Score: 0.16%

Source: CVE
March 11th, 2025 (about 1 month ago)

CVE-2025-24067
Kernel Streaming Service Driver Elevation of Privilege Vulnerability
Description: Heap-based buffer overflow in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
March 11th, 2025 (about 1 month ago)

CVE-2025-24066
Kernel Streaming Service Driver Elevation of Privilege Vulnerability
Description: Heap-based buffer overflow in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
March 11th, 2025 (about 1 month ago)

CVE-2025-24064
Windows Domain Name Service Remote Code Execution Vulnerability
Description: Use after free in DNS Server allows an unauthorized attacker to execute code over a network.

CVSS: HIGH (8.1)

EPSS Score: 0.26%

Source: CVE
March 11th, 2025 (about 1 month ago)

CVE-2025-24061
Windows Mark of the Web Security Feature Bypass Vulnerability
Description: Protection mechanism failure in Windows Mark of the Web (MOTW) allows an unauthorized attacker to bypass a security feature locally.

CVSS: HIGH (7.8)

EPSS Score: 0.09%

Source: CVE
March 11th, 2025 (about 1 month ago)

CVE-2025-24059
Windows Common Log File System Driver Elevation of Privilege Vulnerability
Description: Incorrect conversion between numeric types in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

CVSS: HIGH (7.8)

EPSS Score: 0.07%

Source: CVE
March 11th, 2025 (about 1 month ago)

CVE-2025-24057
Microsoft Office Remote Code Execution Vulnerability
Description: Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

CVSS: HIGH (7.8)

EPSS Score: 0.08%

Source: CVE
March 11th, 2025 (about 1 month ago)