Vulnerabilities > Microsoft
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-05-13 | CVE-2025-30400 | Use After Free vulnerability in Microsoft products Use after free in Windows DWM allows an authorized attacker to elevate privileges locally. | 7.8 |
| 2025-05-13 | CVE-2025-32701 | Use After Free vulnerability in Microsoft products Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. | 7.8 |
| 2025-05-13 | CVE-2025-32702 | Command Injection vulnerability in Microsoft Visual Studio 2019 Improper neutralization of special elements used in a command ('command injection') in Visual Studio allows an unauthorized attacker to execute code locally. | 7.8 |
| 2025-05-13 | CVE-2025-32703 | Insufficient Granularity of Access Control vulnerability in Microsoft Visual Studio 2019 Insufficient granularity of access control in Visual Studio allows an authorized attacker to disclose information locally. | 5.5 |
| 2025-05-13 | CVE-2025-32704 | Buffer Over-read vulnerability in Microsoft products Buffer over-read in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | 7.8 |
| 2025-05-13 | CVE-2025-32705 | Out-of-bounds Read vulnerability in Microsoft 365 Apps and Office Long Term Servicing Channel Out-of-bounds read in Microsoft Office Outlook allows an unauthorized attacker to execute code locally. | 7.8 |
| 2025-05-13 | CVE-2025-32706 | Improper Input Validation vulnerability in Microsoft products Improper input validation in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. | 7.8 |
| 2025-05-13 | CVE-2025-32707 | Out-of-bounds Read vulnerability in Microsoft products Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally. | 7.8 |
| 2025-05-13 | CVE-2025-32709 | Use After Free vulnerability in Microsoft products Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. | 7.8 |
| 2025-05-13 | CVE-2025-21264 | Files or Directories Accessible to External Parties vulnerability in Microsoft Visual Studio Code Files or directories accessible to external parties in Visual Studio Code allows an unauthorized attacker to bypass a security feature locally. | 7.1 |