CVSS: 8.8EPSS: %CPEs: 26EXPL: 0CVE-2025-33073 – Windows SMB Client Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-33073
10 Jun 2025 — Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-33073 • CWE-284: Improper Access Control •
CVSS: 8.1EPSS: %CPEs: 23EXPL: 0CVE-2025-33070 – Windows Netlogon Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-33070
10 Jun 2025 — Use of uninitialized resource in Windows Netlogon allows an unauthorized attacker to elevate privileges over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-33070 • CWE-908: Use of Uninitialized Resource •
CVSS: 5.1EPSS: %CPEs: 3EXPL: 0CVE-2025-33069 – Windows App Control for Business Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2025-33069
10 Jun 2025 — Improper verification of cryptographic signature in App Control for Business (WDAC) allows an unauthorized attacker to bypass a security feature locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-33069 • CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 6.5EPSS: %CPEs: 26EXPL: 0CVE-2025-33057 – Windows Local Security Authority (LSA) Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2025-33057
10 Jun 2025 — Null pointer dereference in Windows Local Security Authority (LSA) allows an authorized attacker to deny service over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-33057 • CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: %CPEs: 26EXPL: 0CVE-2025-33056 – Windows Local Security Authority (LSA) Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2025-33056
10 Jun 2025 — Improper access control in Microsoft Local Security Authority Server (lsasrv) allows an unauthorized attacker to deny service over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-33056 • CWE-284: Improper Access Control •
CVSS: 5.5EPSS: %CPEs: 17EXPL: 0CVE-2025-33055 – Windows Storage Management Provider Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2025-33055
10 Jun 2025 — Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-33055 • CWE-125: Out-of-bounds Read •
CVSS: 10.0EPSS: %CPEs: 26EXPL: 0CVE-2025-33053 – Web Distributed Authoring and Versioning (WebDAV) External Control of File Name or Path Vulnerability
https://notcve.org/view.php?id=CVE-2025-33053
10 Jun 2025 — External control of file name or path in WebDAV allows an unauthorized attacker to execute code over a network. Web Distributed Authoring and Versioning (WebDAV) contains an external control of file name or path vulnerability. This vulnerability could allow an unauthorized attacker to execute code over a network. This vulnerability could affect various products that implement WebDAV, including but not limited to Microsoft Windows. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-33053 • CWE-73: External Control of File Name or Path •
CVSS: 5.5EPSS: %CPEs: 13EXPL: 0CVE-2025-33052 – Windows DWM Core Library Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2025-33052
10 Jun 2025 — Use of uninitialized resource in Windows DWM Core Library allows an authorized attacker to disclose information locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-33052 • CWE-908: Use of Uninitialized Resource •
CVSS: 5.5EPSS: %CPEs: 17EXPL: 0CVE-2025-24065 – Windows Storage Management Provider Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2025-24065
10 Jun 2025 — Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24065 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: %CPEs: 17EXPL: 0CVE-2025-24069 – Windows Storage Management Provider Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2025-24069
10 Jun 2025 — Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24069 • CWE-125: Out-of-bounds Read •