Microsoft vulnerabilities

Showing 201 - 250 of 1.4K CVEs

  1. CVE-2025-29806 Published Mar 23, 2025

    No cwe for this issue in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

  2. CVE-2025-26633 Published Mar 11, 2025

    Improper neutralization in Microsoft Management Console allows an unauthorized attacker to bypass a security feature locally.

  3. CVE-2025-26630 Published Mar 11, 2025

    Use after free in Microsoft Office Access allows an unauthorized attacker to execute code locally.

  4. CVE-2025-24083 Published Mar 11, 2025

    Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally.

  5. CVE-2025-24082 Published Mar 11, 2025

    Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  6. CVE-2025-24081 Published Mar 11, 2025

    Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  7. CVE-2025-24080 Published Mar 11, 2025

    Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

  8. CVE-2025-24079 Published Mar 11, 2025

    Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

  9. CVE-2025-24078 Published Mar 11, 2025

    Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

  10. CVE-2025-24075 Published Mar 11, 2025

    Stack-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  11. CVE-2025-24057 Published Mar 11, 2025

    Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

  12. CVE-2025-24043 Published Mar 11, 2025

    Improper verification of cryptographic signature in .NET allows an authorized attacker to execute code over a network.

  13. CVE-2025-26643 Published Mar 7, 2025

    The UI performs the wrong action in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

  14. CVE-2025-21401 Published Feb 15, 2025

    Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

  15. CVE-2025-21400 Published Feb 11, 2025

    Microsoft SharePoint Server Remote Code Execution Vulnerability

  16. CVE-2025-21394 Published Feb 11, 2025

    Microsoft Excel Remote Code Execution Vulnerability

  17. CVE-2025-21392 Published Feb 11, 2025

    Microsoft Office Remote Code Execution Vulnerability

  18. CVE-2025-21390 Published Feb 11, 2025

    Microsoft Excel Remote Code Execution Vulnerability

  19. CVE-2025-21387 Published Feb 11, 2025

    Microsoft Excel Remote Code Execution Vulnerability

  20. CVE-2025-21386 Published Feb 11, 2025

    Microsoft Excel Remote Code Execution Vulnerability

  21. CVE-2025-21383 Published Feb 11, 2025

    Microsoft Excel Information Disclosure Vulnerability

  22. CVE-2025-21381 Published Feb 11, 2025

    Microsoft Excel Remote Code Execution Vulnerability

  23. CVE-2025-21408 Published Feb 6, 2025

    Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

  24. CVE-2025-21404 Published Feb 6, 2025

    Microsoft Edge (Chromium-based) Spoofing Vulnerability

  25. CVE-2025-21342 Published Feb 6, 2025

    Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

  26. CVE-2025-21283 Published Feb 6, 2025

    Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

  27. CVE-2025-21279 Published Feb 6, 2025

    Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

  28. CVE-2025-21267 Published Feb 6, 2025

    Microsoft Edge (Chromium-based) Spoofing Vulnerability

  29. CVE-2025-21262 Published Jan 24, 2025

    User Interface (UI) Misrepresentation of Critical Information in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network

  30. CVE-2025-21185 Published Jan 17, 2025

    Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

  31. CVE-2025-21402 Published Jan 14, 2025

    Microsoft Office OneNote Remote Code Execution Vulnerability

  32. CVE-2025-21395 Published Jan 14, 2025

    Microsoft Access Remote Code Execution Vulnerability

  33. CVE-2025-21393 Published Jan 14, 2025

    Microsoft SharePoint Server Spoofing Vulnerability

  34. CVE-2025-21366 Published Jan 14, 2025

    Microsoft Access Remote Code Execution Vulnerability

  35. CVE-2025-21361 Published Jan 14, 2025

    Microsoft Outlook Remote Code Execution Vulnerability

  36. CVE-2025-21362 Published Jan 14, 2025

    Microsoft Excel Remote Code Execution Vulnerability

  37. CVE-2025-21357 Published Jan 14, 2025

    Microsoft Outlook Remote Code Execution Vulnerability

  38. CVE-2025-21356 Published Jan 14, 2025

    Microsoft Office Visio Remote Code Execution Vulnerability

  39. CVE-2025-21348 Published Jan 14, 2025

    Microsoft SharePoint Server Remote Code Execution Vulnerability

  40. CVE-2025-21354 Published Jan 14, 2025

    Microsoft Excel Remote Code Execution Vulnerability

  41. CVE-2025-21346 Published Jan 14, 2025

    Microsoft Office Security Feature Bypass Vulnerability

  42. CVE-2025-21345 Published Jan 14, 2025

    Microsoft Office Visio Remote Code Execution Vulnerability

  43. CVE-2025-21344 Published Jan 14, 2025

    Microsoft SharePoint Server Remote Code Execution Vulnerability

  44. CVE-2025-21338 Published Jan 14, 2025

    GDI+ Remote Code Execution Vulnerability

  45. CVE-2025-21333 Published Jan 14, 2025

    Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

  46. CVE-2025-21298 Published Jan 14, 2025

    Windows OLE Remote Code Execution Vulnerability

  47. CVE-2025-21186 Published Jan 14, 2025

    Microsoft Access Remote Code Execution Vulnerability

  48. CVE-2025-21176 Published Jan 14, 2025

    .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

  49. CVE-2024-42004 Published Dec 18, 2024

    A library injection vulnerability exists in Microsoft Teams (work or school) 24046.2813.2770.1094 for macOS. A specially crafted library can leverage Teams's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.

  50. CVE-2024-41145 Published Dec 18, 2024

    A library injection vulnerability exists in the WebView.app helper app of Microsoft Teams (work or school) 24046.2813.2770.1094 for macOS. A specially crafted library can leverage Teams's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.