CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2025-47991 – Windows Input Method Editor (IME) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-47991
08 Jul 2025 — Use after free in Microsoft Input Method Editor (IME) allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47991 • CWE-416: Use After Free •
CVSS: 8.3EPSS: 0%CPEs: 17EXPL: 0CVE-2025-49691 – Windows Miracast Wireless Display Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-49691
08 Jul 2025 — Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over an adjacent network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49691 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.4EPSS: 0%CPEs: 13EXPL: 0CVE-2025-49690 – Capability Access Management Service (camsvc) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-49690
08 Jul 2025 — Concurrent execution using shared resource with improper synchronization ('race condition') in Capability Access Management Service (camsvc) allows an unauthorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49690 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-415: Double Free •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-49689 – Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-49689
08 Jul 2025 — Integer overflow or wraparound in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49689 • CWE-125: Out-of-bounds Read CWE-190: Integer Overflow or Wraparound CWE-822: Untrusted Pointer Dereference •
CVSS: 8.8EPSS: 0%CPEs: 21EXPL: 0CVE-2025-49687 – Windows Input Method Editor (IME) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-49687
08 Jul 2025 — Out-of-bounds read in Microsoft Input Method Editor (IME) allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49687 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-49686 – Windows TCP/IP Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-49686
08 Jul 2025 — Null pointer dereference in Windows TCP/IP allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49686 • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-49661 – Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-49661
08 Jul 2025 — Untrusted pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49661 • CWE-822: Untrusted Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 26EXPL: 0CVE-2025-49658 – Windows Transport Driver Interface (TDI) Translation Driver Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2025-49658
08 Jul 2025 — Out-of-bounds read in Windows TDX.sys allows an authorized attacker to disclose information locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49658 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-47987 – Credential Security Support Provider Protocol (CredSSP) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-47987
08 Jul 2025 — Heap-based buffer overflow in Windows Cred SSProvider Protocol allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47987 • CWE-122: Heap-based Buffer Overflow CWE-190: Integer Overflow or Wraparound •
CVSS: 8.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-47986 – Universal Print Management Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-47986
08 Jul 2025 — Use after free in Universal Print Management Service allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47986 • CWE-416: Use After Free •