Vulnerabilities > Microsoft > Medium

DATE CVE VULNERABILITY TITLE RISK
2025-01-14 CVE-2025-21225 Unspecified vulnerability in Microsoft products
Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability
network
high complexity
microsoft
5.9
5.9
2025-01-14 CVE-2025-21278 Unspecified vulnerability in Microsoft products
Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability
local
low complexity
microsoft
5.5
5.5
2025-01-14 CVE-2025-21313 Unspecified vulnerability in Microsoft products
Windows Security Account Manager (SAM) Denial of Service Vulnerability
network
low complexity
microsoft
6.5
6.5
2025-01-09 CVE-2025-21380 Unspecified vulnerability in Microsoft Azure Marketplace
Improper access control in Azure SaaS Resources allows an authorized attacker to disclose information over a network.
network
low complexity
microsoft
6.5
6.5
2025-01-09 CVE-2025-21385 Server-Side Request Forgery (SSRF) vulnerability in Microsoft Purview
A Server-Side Request Forgery (SSRF) vulnerability in Microsoft Purview allows an authorized attacker to disclose information over a network.
network
low complexity
microsoft CWE-918
6.5
6.5
2024-12-12 CVE-2024-49071 Unspecified vulnerability in Microsoft Defender for Endpoint
Improper authorization of an index that contains sensitive information from a Global Files search in Windows Defender allows an authorized attacker to disclose information over a network.
network
low complexity
microsoft
6.5
6.5
2024-12-12 CVE-2024-49062 Unspecified vulnerability in Microsoft Sharepoint Server 2016/2019
Microsoft SharePoint Information Disclosure Vulnerability
network
low complexity
microsoft
6.5
6.5
2024-12-12 CVE-2024-49064 Unspecified vulnerability in Microsoft Sharepoint Server 2016/2019
Microsoft SharePoint Information Disclosure Vulnerability
network
low complexity
microsoft
6.5
6.5
2024-12-12 CVE-2024-49065 Unspecified vulnerability in Microsoft products
Microsoft Office Remote Code Execution Vulnerability
local
low complexity
microsoft
5.5
5.5
2024-11-14 CVE-2024-49025 Unspecified vulnerability in Microsoft Edge Chromium
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
network
low complexity
microsoft
4.3
4.3