Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2025-01-14 CVE-2024-13161 Unspecified vulnerability in Ivanti Endpoint Manager 2021.1.1/2022/2024
Absolute path traversal in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to leak sensitive information.
network
low complexity
ivanti
7.5
7.5
2025-01-14 CVE-2025-21178 Unspecified vulnerability in Microsoft Visual Studio 2022
Visual Studio Remote Code Execution Vulnerability
network
low complexity
microsoft
8.8
8.8
2025-01-14 CVE-2025-21186 Unspecified vulnerability in Microsoft 365 Apps, Access and Office
Microsoft Access Remote Code Execution Vulnerability
local
low complexity
microsoft
7.8
7.8
2025-01-14 CVE-2025-21187 Unspecified vulnerability in Microsoft Power Automate for Desktop
Microsoft Power Automate Remote Code Execution Vulnerability
local
low complexity
microsoft
7.8
7.8
2025-01-14 CVE-2025-21218 Unspecified vulnerability in Microsoft products
Windows Kerberos Denial of Service Vulnerability
network
low complexity
microsoft
7.5
7.5
2025-01-14 CVE-2025-21237 Unspecified vulnerability in Microsoft products
Windows Telephony Service Remote Code Execution Vulnerability
network
low complexity
microsoft
8.8
8.8
2025-01-14 CVE-2025-21271 Unspecified vulnerability in Microsoft products
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
local
low complexity
microsoft
7.8
7.8
2025-01-14 CVE-2025-21297 Unspecified vulnerability in Microsoft products
Windows Remote Desktop Services Remote Code Execution Vulnerability
network
high complexity
microsoft
8.1
8.1
2025-01-14 CVE-2025-21299 Unspecified vulnerability in Microsoft products
Windows Kerberos Security Feature Bypass Vulnerability
local
low complexity
microsoft
7.8
7.8
2025-01-14 CVE-2025-21304 Unspecified vulnerability in Microsoft products
Microsoft DWM Core Library Elevation of Privilege Vulnerability
local
low complexity
microsoft
7.8
7.8