Microsoft vulnerabilities

Showing 201 - 250 of 2.2K CVEs

  1. CVE-2025-30381 Published May 13, 2025

    Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  2. CVE-2025-30383 Published May 13, 2025

    Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  3. CVE-2025-29979 Published May 13, 2025

    Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  4. CVE-2025-29976 Published May 13, 2025

    Improper privilege management in Microsoft Office SharePoint allows an authorized attacker to elevate privileges locally.

  5. CVE-2025-29977 Published May 13, 2025

    Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  6. CVE-2025-29825 Published May 2, 2025

    User interface (ui) misrepresentation of critical information in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

  7. CVE-2025-29834 Published Apr 12, 2025

    Out-of-bounds read in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

  8. CVE-2025-29816 Published Apr 8, 2025

    Improper input validation in Microsoft Office Word allows an unauthorized attacker to bypass a security feature over a network.

  9. CVE-2025-29794 Published Apr 8, 2025

    Improper authorization in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

  10. CVE-2025-29793 Published Apr 8, 2025

    Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

  11. CVE-2025-29792 Published Apr 8, 2025

    Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally.

  12. CVE-2025-29791 Published Apr 8, 2025

    Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.

  13. CVE-2025-27752 Published Apr 8, 2025

    Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  14. CVE-2025-27751 Published Apr 8, 2025

    Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  15. CVE-2025-27750 Published Apr 8, 2025

    Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  16. CVE-2025-27749 Published Apr 8, 2025

    Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

  17. CVE-2025-27748 Published Apr 8, 2025

    Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

  18. CVE-2025-27747 Published Apr 8, 2025

    Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

  19. CVE-2025-27746 Published Apr 8, 2025

    Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

  20. CVE-2025-27745 Published Apr 8, 2025

    Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

  21. CVE-2025-27744 Published Apr 8, 2025

    Improper access control in Microsoft Office allows an authorized attacker to elevate privileges locally.

  22. CVE-2025-26687 Published Apr 8, 2025

    Use after free in Windows Win32K - GRFX allows an unauthorized attacker to elevate privileges over a network.

  23. CVE-2025-26642 Published Apr 8, 2025

    Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally.

  24. CVE-2025-29815 Published Apr 4, 2025

    Use after free in Microsoft Edge (Chromium-based) allows an authorized attacker to execute code over a network.

  25. CVE-2025-25000 Published Apr 4, 2025

    Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

  26. CVE-2025-29806 Published Mar 23, 2025

    No cwe for this issue in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

  27. CVE-2025-26633 Published Mar 11, 2025

    Improper neutralization in Microsoft Management Console allows an unauthorized attacker to bypass a security feature locally.

  28. CVE-2025-26630 Published Mar 11, 2025

    Use after free in Microsoft Office Access allows an unauthorized attacker to execute code locally.

  29. CVE-2025-24083 Published Mar 11, 2025

    Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally.

  30. CVE-2025-24082 Published Mar 11, 2025

    Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  31. CVE-2025-24081 Published Mar 11, 2025

    Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  32. CVE-2025-24080 Published Mar 11, 2025

    Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

  33. CVE-2025-24079 Published Mar 11, 2025

    Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

  34. CVE-2025-24078 Published Mar 11, 2025

    Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

  35. CVE-2025-24075 Published Mar 11, 2025

    Stack-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  36. CVE-2025-24057 Published Mar 11, 2025

    Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

  37. CVE-2025-24043 Published Mar 11, 2025

    Improper verification of cryptographic signature in .NET allows an authorized attacker to execute code over a network.

  38. CVE-2025-26643 Published Mar 7, 2025

    The UI performs the wrong action in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

  39. CVE-2025-21401 Published Feb 15, 2025

    Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

  40. CVE-2025-21400 Published Feb 11, 2025

    Microsoft SharePoint Server Remote Code Execution Vulnerability

  41. CVE-2025-21394 Published Feb 11, 2025

    Microsoft Excel Remote Code Execution Vulnerability

  42. CVE-2025-21392 Published Feb 11, 2025

    Microsoft Office Remote Code Execution Vulnerability

  43. CVE-2025-21390 Published Feb 11, 2025

    Microsoft Excel Remote Code Execution Vulnerability

  44. CVE-2025-21387 Published Feb 11, 2025

    Microsoft Excel Remote Code Execution Vulnerability

  45. CVE-2025-21386 Published Feb 11, 2025

    Microsoft Excel Remote Code Execution Vulnerability

  46. CVE-2025-21383 Published Feb 11, 2025

    Microsoft Excel Information Disclosure Vulnerability

  47. CVE-2025-21381 Published Feb 11, 2025

    Microsoft Excel Remote Code Execution Vulnerability

  48. CVE-2025-21408 Published Feb 6, 2025

    Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

  49. CVE-2025-21404 Published Feb 6, 2025

    Microsoft Edge (Chromium-based) Spoofing Vulnerability

  50. CVE-2025-21342 Published Feb 6, 2025

    Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability