Microsoft

Windows 10

3280 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2025-50166

  • EPSS 0.12%
  • Published 12.08.2025 17:10:04
  • Last modified 14.08.2025 17:36:03

Integer overflow or wraparound in Windows Distributed Transaction Coordinator allows an authorized attacker to disclose information over a network.

7.3

CVE-2025-50161

  • EPSS 0.07%
  • Published 12.08.2025 17:10:01
  • Last modified 14.08.2025 17:13:31

Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

7.3

CVE-2025-50159

  • EPSS 0.07%
  • Published 12.08.2025 17:10:00
  • Last modified 14.08.2025 17:13:09

Use after free in Remote Access Point-to-Point Protocol (PPP) EAP-TLS allows an authorized attacker to elevate privileges locally.

7

CVE-2025-50158

  • EPSS 0.05%
  • Published 12.08.2025 17:09:59
  • Last modified 14.08.2025 17:13:01

Time-of-check time-of-use (toctou) race condition in Windows NTFS allows an unauthorized attacker to disclose information locally.

6.5

CVE-2025-50154

Exploit
  • EPSS 1.72%
  • Published 12.08.2025 17:09:58
  • Last modified 26.09.2025 13:09:38

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network.

7

CVE-2025-49762

  • EPSS 0.05%
  • Published 12.08.2025 17:09:57
  • Last modified 19.08.2025 14:42:01

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7.8

CVE-2025-50153

  • EPSS 0.06%
  • Published 12.08.2025 17:09:57
  • Last modified 14.08.2025 17:14:11

Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges locally.

7.8

CVE-2025-49761

  • EPSS 0.06%
  • Published 12.08.2025 17:09:56
  • Last modified 19.08.2025 14:41:53

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

6.7

CVE-2025-49743

  • EPSS 0.06%
  • Published 12.08.2025 17:09:54
  • Last modified 15.08.2025 17:48:46

Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.

6.8

CVE-2025-49751

  • EPSS 0.44%
  • Published 12.08.2025 17:09:41
  • Last modified 15.08.2025 17:49:15

Missing synchronization in Windows Hyper-V allows an authorized attacker to deny service over an adjacent network.