Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2025-04-08 CVE-2025-29805 Exposure of sensitive information to an unauthorized actor in Outlook for Android allows an unauthorized attacker to disclose information over a network.
network
low complexity
CWE-200
7.5
7.5
2025-04-08 CVE-2025-29811 Improper input validation in Windows Mobile Broadband allows an authorized attacker to elevate privileges locally.
local
low complexity
CWE-122
7.8
7.8
2025-04-08 CVE-2025-29812 Untrusted pointer dereference in Windows Kernel Memory allows an authorized attacker to elevate privileges locally.
local
low complexity
CWE-822
7.8
7.8
2025-04-08 CVE-2025-29823 Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
local
low complexity
CWE-416
7.8
7.8
2025-04-08 CVE-2025-29824 Use After Free vulnerability in Microsoft products
Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
local
low complexity
microsoft CWE-416
7.8
7.8
2025-04-08 CVE-2025-24058 Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.
local
low complexity
CWE-20
7.8
7.8
2025-04-08 CVE-2025-24060 Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.
local
low complexity
CWE-20
7.8
7.8
2025-04-08 CVE-2025-24062 Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.
local
low complexity
CWE-20
7.8
7.8
2025-04-08 CVE-2025-24074 Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.
local
low complexity
CWE-20
7.8
7.8
2025-04-08 CVE-2025-26628 Insufficiently protected credentials in Azure Local Cluster allows an authorized attacker to disclose information locally.
local
low complexity
CWE-522
7.3
7.3