Vulnerabilities > Microsoft > Windows 10 22H2 > High

DATE CVE VULNERABILITY TITLE RISK
2025-05-13 CVE-2025-30385 Use After Free vulnerability in Microsoft products
Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
local
low complexity
microsoft CWE-416
7.8
7.8
2025-05-13 CVE-2025-30388 Heap-based Buffer Overflow vulnerability in Microsoft products
Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.
local
low complexity
microsoft CWE-122
7.8
7.8
2025-05-13 CVE-2025-30400 Use After Free vulnerability in Microsoft products
Use after free in Windows DWM allows an authorized attacker to elevate privileges locally.
local
low complexity
microsoft CWE-416
7.8
7.8
2025-05-13 CVE-2025-32701 Use After Free vulnerability in Microsoft products
Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
local
low complexity
microsoft CWE-416
7.8
7.8
2025-05-13 CVE-2025-32706 Improper Input Validation vulnerability in Microsoft products
Improper input validation in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
local
low complexity
microsoft CWE-20
7.8
7.8
2025-05-13 CVE-2025-32709 Use After Free vulnerability in Microsoft products
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
local
low complexity
microsoft CWE-416
7.8
7.8
2025-05-13 CVE-2025-24063 Heap-based Buffer Overflow vulnerability in Microsoft products
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.
local
low complexity
microsoft CWE-122
7.8
7.8
2025-05-13 CVE-2025-27468 Improper Privilege Management vulnerability in Microsoft products
Improper privilege management in Windows Secure Kernel Mode allows an authorized attacker to elevate privileges locally.
local
high complexity
microsoft CWE-269
7.0
7.0
2025-05-13 CVE-2025-29840 Stack-based Buffer Overflow vulnerability in Microsoft products
Stack-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.
network
low complexity
microsoft CWE-121
8.8
8.8
2025-05-13 CVE-2025-29841 Use After Free vulnerability in Microsoft products
Concurrent execution using shared resource with improper synchronization ('race condition') in Universal Print Management Service allows an authorized attacker to elevate privileges locally.
local
high complexity
microsoft CWE-416
7.0
7.0