CVSS: 10.0EPSS: 0%CPEs: 26EXPL: 0CVE-2025-24056 – Windows Telephony Service Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-24056
11 Mar 2025 — Heap-based buffer overflow in Windows Telephony Server allows an unauthorized attacker to execute code over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24056 • CWE-122: Heap-based Buffer Overflow •
CVSS: 4.6EPSS: 0%CPEs: 26EXPL: 0CVE-2025-24055 – Windows USB Video Class System Driver Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2025-24055
11 Mar 2025 — Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to disclose information with a physical attack. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24055 • CWE-125: Out-of-bounds Read •
CVSS: 10.0EPSS: 0%CPEs: 26EXPL: 0CVE-2025-24051 – Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-24051
11 Mar 2025 — Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24051 • CWE-122: Heap-based Buffer Overflow •
CVSS: 5.0EPSS: 0%CPEs: 26EXPL: 0CVE-2025-21247 – MapUrlToZone Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2025-21247
11 Mar 2025 — Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21247 • CWE-41: Improper Resolution of Path Equivalence •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-21180 – Windows exFAT File System Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-21180
11 Mar 2025 — Heap-based buffer overflow in Windows exFAT File System allows an unauthorized attacker to execute code locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21180 • CWE-122: Heap-based Buffer Overflow •
CVSS: 6.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-24988 – Windows USB Video Class System Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-24988
11 Mar 2025 — Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to elevate privileges with a physical attack. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24988 • CWE-125: Out-of-bounds Read •
CVSS: 6.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-24987 – Windows USB Video Class System Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-24987
11 Mar 2025 — Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to elevate privileges with a physical attack. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24987 • CWE-125: Out-of-bounds Read •
CVSS: 8.1EPSS: 0%CPEs: 26EXPL: 0CVE-2025-24035 – Windows Remote Desktop Services Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-24035
11 Mar 2025 — Sensitive data storage in improperly locked memory in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24035 • CWE-591: Sensitive Data Storage in Improperly Locked Memory •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-21373 – Windows Installer Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-21373
11 Feb 2025 — Windows Installer Elevation of Privilege Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Windows Installer service. By creating a symbolic link, an attacker can abuse the service to delete arbitrary files. An attacker can leverage this vulnerability to escalate p... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21373 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.8EPSS: 4%CPEs: 26EXPL: 0CVE-2025-21181 – Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2025-21181
11 Feb 2025 — Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21181 • CWE-400: Uncontrolled Resource Consumption •