CVSS: 8.8EPSS: 0%CPEs: 17EXPL: 0CVE-2025-49740 – Windows SmartScreen Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2025-49740
08 Jul 2025 — This vulnerability allows remote attackers to bypass the SmartScreen security feature on affected installations of Microsoft Windows. ... An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current user. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49740 • CWE-693: Protection Mechanism Failure •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-49742 – Windows Graphics Component Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-49742
08 Jul 2025 — Integer overflow or wraparound in Microsoft Graphics Component allows an authorized attacker to execute code locally. ... An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the win32kfull driver. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49742 • CWE-122: Heap-based Buffer Overflow CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: -EXPL: 0CVE-2025-52521 – Trend Micro Maximum Security Link Following Local Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2025-52521
08 Jul 2025 — An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Regain Disk Space functionality. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. •
CVSS: 7.8EPSS: 0%CPEs: -EXPL: 0CVE-2025-52837 – Trend Micro Password Manager Link Following Local Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2025-52837
08 Jul 2025 — An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Trend Micro Password Manager Service. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. •
CVSS: 3.3EPSS: 0%CPEs: -EXPL: 0CVE-2025-7233 – IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2025-7233
08 Jul 2025 — This vulnerability allows remote attackers to disclose sensitive information on affected installations of IrfanView CADImage Plugin. ... An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. •
CVSS: 7.8EPSS: 0%CPEs: -EXPL: 0CVE-2025-7234 – IrfanView CADImage Plugin CGM File Parsing Out-of-Bounds Write Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-7234
08 Jul 2025 — This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. ... An attacker can leverage this vulnerability to execute code in the context of the current process. •
CVSS: 7.8EPSS: 0%CPEs: -EXPL: 0CVE-2025-7235 – IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-7235
08 Jul 2025 — This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. ... An attacker can leverage this vulnerability to execute code in the context of the current process. •
CVSS: 7.8EPSS: 0%CPEs: -EXPL: 0CVE-2025-7236 – IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-7236
08 Jul 2025 — This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. ... An attacker can leverage this vulnerability to execute code in the context of the current process. •
CVSS: 7.8EPSS: 0%CPEs: -EXPL: 0CVE-2025-7237 – IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-7237
08 Jul 2025 — This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. ... An attacker can leverage this vulnerability to execute code in the context of the current process. •
CVSS: 7.8EPSS: 0%CPEs: -EXPL: 0CVE-2025-7238 – IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-7238
08 Jul 2025 — This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. ... An attacker can leverage this vulnerability to execute code in the context of the current process. •