Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2025-05-13 CVE-2025-30386 Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
local
low complexity
CWE-416
8.4
8.4
2025-05-13 CVE-2025-30388 Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.
local
low complexity
CWE-122
7.8
7.8
2025-05-13 CVE-2025-30397 Access of resource using incompatible type ('type confusion') in Microsoft Scripting Engine allows an unauthorized attacker to execute code over a network.
network
high complexity
CWE-843
7.5
7.5
2025-05-13 CVE-2025-30400 Use after free in Windows DWM allows an authorized attacker to elevate privileges locally.
local
low complexity
CWE-416
7.8
7.8
2025-05-13 CVE-2025-32701 Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
local
low complexity
CWE-416
7.8
7.8
2025-05-13 CVE-2025-32702 Improper neutralization of special elements used in a command ('command injection') in Visual Studio allows an unauthorized attacker to execute code locally.
local
low complexity
CWE-77
7.8
7.8
2025-05-13 CVE-2025-32704 Buffer over-read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
local
low complexity
CWE-126
8.4
8.4
2025-05-13 CVE-2025-32705 Out-of-bounds read in Microsoft Office Outlook allows an unauthorized attacker to execute code locally.
local
low complexity
CWE-125
7.8
7.8
2025-05-13 CVE-2025-32706 Improper input validation in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
local
low complexity
CWE-20
7.8
7.8
2025-05-13 CVE-2025-32707 Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.
local
low complexity
CWE-125
7.8
7.8