CVSS: 7.8EPSS: 0%CPEs: 30EXPL: 0CVE-2025-30388 – Windows Graphics Component Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-30388
13 May 2025 — Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-30388 • CWE-122: Heap-based Buffer Overflow •
CVSS: 8.4EPSS: 0%CPEs: 4EXPL: 0CVE-2025-30386 – Microsoft Office Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-30386
13 May 2025 — Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-30386 • CWE-416: Use After Free •
CVSS: 8.4EPSS: 0%CPEs: 4EXPL: 0CVE-2025-30377 – Microsoft Office Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-30377
13 May 2025 — Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-30377 • CWE-416: Use After Free •
CVSS: 7.6EPSS: 0%CPEs: 28EXPL: 0CVE-2025-26687 – Win32k Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-26687
08 Apr 2025 — Use after free in Windows Win32K - GRFX allows an unauthorized attacker to elevate privileges over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26687 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 32EXPL: 0CVE-2025-21338 – GDI+ Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-21338
14 Jan 2025 — GDI+ Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21338 • CWE-190: Integer Overflow or Wraparound •