CVSS: 7.0EPSS: 0%CPEs: 26EXPL: 0CVE-2025-47975 – Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-47975
08 Jul 2025 — Double free in Windows SSDP Service allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47975 • CWE-415: Double Free •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-47973 – Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-47973
08 Jul 2025 — Buffer over-read in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47973 • CWE-126: Buffer Over-read •
CVSS: 4.0EPSS: 0%CPEs: 17EXPL: 0CVE-2025-49760 – Windows Storage Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2025-49760
08 Jul 2025 — External control of file name or path in Windows Storage allows an authorized attacker to perform spoofing over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49760 • CWE-73: External Control of File Name or Path •
CVSS: 10.0EPSS: 0%CPEs: 17EXPL: 0CVE-2025-49753 – Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-49753
08 Jul 2025 — Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49753 • CWE-122: Heap-based Buffer Overflow •
CVSS: 8.1EPSS: 0%CPEs: 12EXPL: 0CVE-2025-49735 – Windows KDC Proxy Service (KPSSVC) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-49735
08 Jul 2025 — Use after free in Windows KDC Proxy Service (KPSSVC) allows an unauthorized attacker to execute code over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49735 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2025-49726 – Windows Notification Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-49726
08 Jul 2025 — Use after free in Windows Notification allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49726 • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 13EXPL: 0CVE-2025-49723 – Windows StateRepository API Server file Tampering Vulnerability
https://notcve.org/view.php?id=CVE-2025-49723
08 Jul 2025 — Missing authorization in Windows StateRepository API allows an authorized attacker to perform tampering locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49723 • CWE-862: Missing Authorization •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-49721 – Windows Fast FAT File System Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-49721
08 Jul 2025 — Heap-based buffer overflow in Windows Fast FAT Driver allows an unauthorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49721 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.8EPSS: 1%CPEs: 15EXPL: 0CVE-2025-49716 – Windows Netlogon Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2025-49716
08 Jul 2025 — Uncontrolled resource consumption in Windows Netlogon allows an unauthorized attacker to deny service over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49716 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2025-47991 – Windows Input Method Editor (IME) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-47991
08 Jul 2025 — Use after free in Microsoft Input Method Editor (IME) allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47991 • CWE-416: Use After Free •