CVSS: 10.0EPSS: 0%CPEs: 26EXPL: 0CVE-2025-21332 – MapUrlToZone Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2025-21332
14 Jan 2025 — MapUrlToZone Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21332 • CWE-41: Improper Resolution of Path Equivalence •
CVSS: 6.8EPSS: 0%CPEs: 4EXPL: 0CVE-2025-21313 – Windows Security Account Manager (SAM) Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2025-21313
14 Jan 2025 — Windows Security Account Manager (SAM) Denial of Service Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21313 • CWE-833: Deadlock •
CVSS: 7.8EPSS: 0%CPEs: 21EXPL: 0CVE-2025-21378 – Windows CSC Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-21378
14 Jan 2025 — Windows CSC Service Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21378 • CWE-122: Heap-based Buffer Overflow •
CVSS: 5.5EPSS: 0%CPEs: 21EXPL: 0CVE-2025-21374 – Windows CSC Service Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2025-21374
14 Jan 2025 — Windows CSC Service Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21374 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2025-21372 – Microsoft Brokering File System Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-21372
14 Jan 2025 — Microsoft Brokering File System Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21372 • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2025-21370 – Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-21370
14 Jan 2025 — Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21370 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2025-21343 – Windows Web Threat Defense User Service Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2025-21343
14 Jan 2025 — Windows Web Threat Defense User Service Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21343 • CWE-269: Improper Privilege Management •
CVSS: 5.5EPSS: 0%CPEs: 13EXPL: 0CVE-2025-21340 – Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2025-21340
14 Jan 2025 — Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21340 • CWE-284: Improper Access Control •
CVSS: 10.0EPSS: 0%CPEs: 26EXPL: 0CVE-2025-21339 – Windows Telephony Service Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-21339
14 Jan 2025 — Windows Telephony Service Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21339 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 32EXPL: 0CVE-2025-21338 – GDI+ Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-21338
14 Jan 2025 — GDI+ Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21338 • CWE-190: Integer Overflow or Wraparound •