CVSS: 10.0EPSS: 0%CPEs: 23EXPL: 2CVE-2025-47981 – SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-47981
08 Jul 2025 — Heap-based buffer overflow in Windows SPNEGO Extended Negotiation allows an unauthorized attacker to execute code over a network. • https://github.com/barbaraogmgf/CVE-2025-47981-POC • CWE-122: Heap-based Buffer Overflow •
CVSS: 6.2EPSS: 0%CPEs: 26EXPL: 0CVE-2025-47980 – Windows Imaging Component Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2025-47980
08 Jul 2025 — Exposure of sensitive information to an unauthorized actor in Windows Imaging Component allows an unauthorized attacker to disclose information locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47980 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.0EPSS: 0%CPEs: 26EXPL: 0CVE-2025-47975 – Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-47975
08 Jul 2025 — Double free in Windows SSDP Service allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47975 • CWE-415: Double Free •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-47973 – Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-47973
08 Jul 2025 — Buffer over-read in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47973 • CWE-126: Buffer Over-read •
CVSS: 4.0EPSS: 0%CPEs: 17EXPL: 0CVE-2025-49760 – Windows Storage Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2025-49760
08 Jul 2025 — External control of file name or path in Windows Storage allows an authorized attacker to perform spoofing over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49760 • CWE-73: External Control of File Name or Path •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-49721 – Windows Fast FAT File System Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-49721
08 Jul 2025 — Heap-based buffer overflow in Windows Fast FAT Driver allows an unauthorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49721 • CWE-122: Heap-based Buffer Overflow •
CVSS: 8.3EPSS: 0%CPEs: 17EXPL: 0CVE-2025-49691 – Windows Miracast Wireless Display Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-49691
08 Jul 2025 — Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over an adjacent network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49691 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-49689 – Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-49689
08 Jul 2025 — Integer overflow or wraparound in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49689 • CWE-125: Out-of-bounds Read CWE-190: Integer Overflow or Wraparound CWE-822: Untrusted Pointer Dereference •
CVSS: 8.8EPSS: 0%CPEs: 21EXPL: 0CVE-2025-49687 – Windows Input Method Editor (IME) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-49687
08 Jul 2025 — Out-of-bounds read in Microsoft Input Method Editor (IME) allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49687 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-49686 – Windows TCP/IP Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-49686
08 Jul 2025 — Null pointer dereference in Windows TCP/IP allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49686 • CWE-476: NULL Pointer Dereference •