Vulnerabilities > Microsoft > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-02-06 | CVE-2025-21177 | Server-Side Request Forgery (SSRF) vulnerability in Microsoft Dynamics 365 Sales Server-Side Request Forgery (SSRF) in Microsoft Dynamics 365 Sales allows an authorized attacker to elevate privileges over a network. | 8.8 |
| 2025-02-06 | CVE-2025-21279 | Unspecified vulnerability in Microsoft Edge Chromium Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability | 8.8 |
| 2025-02-06 | CVE-2025-21283 | Unspecified vulnerability in Microsoft Edge Chromium Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability | 8.8 |
| 2025-02-06 | CVE-2025-21342 | Unspecified vulnerability in Microsoft Edge Chromium Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability | 8.8 |
| 2025-02-06 | CVE-2025-21408 | Unspecified vulnerability in Microsoft Edge Chromium Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability | 8.8 |
| 2025-01-29 | CVE-2025-21396 | Unspecified vulnerability in Microsoft Account Missing authorization in Microsoft Account allows an unauthorized attacker to elevate privileges over a network. | 8.2 |
| 2025-01-29 | CVE-2025-21415 | Authentication Bypass by Spoofing vulnerability in Microsoft Azure AI Face Service Authentication bypass by spoofing in Azure AI Face Service allows an authorized attacker to elevate privileges over a network. | 8.8 |
| 2025-01-17 | CVE-2025-21325 | Unspecified vulnerability in Microsoft products Windows Secure Kernel Mode Elevation of Privilege Vulnerability | 7.8 |
| 2025-01-14 | CVE-2025-21344 | Unspecified vulnerability in Microsoft Sharepoint Server 16.0.17328.20362/2016/2019 Microsoft SharePoint Server Remote Code Execution Vulnerability | 7.8 |
| 2025-01-14 | CVE-2025-21345 | Unspecified vulnerability in Microsoft 365 Apps and Office Microsoft Office Visio Remote Code Execution Vulnerability | 7.8 |