Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

8.1

HIGH

CVE-2025-24411

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability ...

Affected Products : magento commerce magento commerce_b2b
Published: Feb. 11, 2025

Modified: Apr. 16, 2025

Vuln Type: Authorization
8.7

HIGH

CVE-2025-24410

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form ...

Affected Products : magento commerce magento commerce_b2b
Published: Feb. 11, 2025

Modified: Apr. 16, 2025

Vuln Type: Cross-Site Scripting
8.2

HIGH

CVE-2025-24409

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass sec...

Affected Products : magento commerce magento commerce_b2b
Published: Feb. 11, 2025

Modified: Apr. 16, 2025

Vuln Type: Authorization
6.5

MEDIUM

CVE-2025-24408

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Information Exposure vulnerability that could result in privilege escalation. A low-privileged attacker could gain unauthorized access to sensitiv...

Affected Products : magento commerce
Published: Feb. 11, 2025

Modified: Feb. 27, 2025

Vuln Type: Information Disclosure
7.1

HIGH

CVE-2025-24407

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Incorrect Authorization vulnerability that could result in a security feature bypass. A low privileged attacker could exploit this vulnerability t...

Affected Products : commerce commerce_b2b
Published: Feb. 11, 2025

Modified: Apr. 16, 2025

Vuln Type: Authorization
7.5

HIGH

CVE-2025-24406

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could lead to a security feature bypass. An unau...

Affected Products : magento commerce magento commerce_b2b
Published: Feb. 11, 2025

Modified: Apr. 17, 2025

Vuln Type: Path Traversal
7.3

HIGH

CVE-2025-24042

Visual Studio Code JS Debug Extension Elevation of Privilege Vulnerability...

Affected Products : visual_studio_code vscode-js-debug
Published: Feb. 11, 2025

Modified: Jul. 02, 2025

Vuln Type: Authentication
7.3

HIGH

CVE-2025-24039

Visual Studio Code Elevation of Privilege Vulnerability...

Affected Products : visual_studio_code
Published: Feb. 11, 2025

Modified: Jul. 02, 2025

Vuln Type: Authentication
7.0

HIGH

CVE-2025-24036

Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability...

Affected Products : autoupdate
Published: Feb. 11, 2025

Modified: Feb. 14, 2025

Vuln Type: Authentication
7.8

HIGH

CVE-2025-21420

Windows Disk Cleanup Tool Elevation of Privilege Vulnerability...

Affected Products : windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_10_1507 +7 more products
Published: Feb. 11, 2025

Modified: Feb. 14, 2025

Vuln Type: Authentication
7.1

HIGH

CVE-2025-21419

Windows Setup Files Cleanup Elevation of Privilege Vulnerability...

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +9 more products
Published: Feb. 11, 2025

Modified: Feb. 14, 2025

Vuln Type: Authorization
7.8

HIGH

CVE-2025-21418

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability...

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +10 more products
Actively Exploited

Published: Feb. 11, 2025

Modified: Feb. 12, 2025

Vuln Type: Authorization
7.0

HIGH

CVE-2025-21414

Windows Core Messaging Elevation of Privileges Vulnerability...

Affected Products : windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_10_1507 windows +5 more products
Published: Feb. 11, 2025

Modified: Feb. 14, 2025

Vuln Type: Authorization
8.8

HIGH

CVE-2025-21410

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability...

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server_2022 windows windows_server_2022_23h2 windows_server_23h2 windows_server_2012_r2 windows_server_2008_r2 +2 more products
Published: Feb. 11, 2025

Modified: Feb. 14, 2025
8.8

HIGH

CVE-2025-21407

Windows Telephony Service Remote Code Execution Vulnerability...

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +10 more products
Published: Feb. 11, 2025

Modified: Feb. 14, 2025

Vuln Type: Authentication
8.8

HIGH

CVE-2025-21406

Windows Telephony Service Remote Code Execution Vulnerability...

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +10 more products
Published: Feb. 11, 2025

Modified: Feb. 14, 2025

Vuln Type: Authentication
8.0

HIGH

CVE-2025-21400

Microsoft SharePoint Server Remote Code Execution Vulnerability...

Affected Products : sharepoint_server sharepoint_server_2016 sharepoint_server_2019
Published: Feb. 11, 2025

Modified: Feb. 14, 2025

Vuln Type: Authentication
7.8

HIGH

CVE-2025-21397

Microsoft Office Remote Code Execution Vulnerability...

Affected Products : office 365_apps office_long_term_servicing_channel office_2024 office_2021
Published: Feb. 11, 2025

Modified: Jul. 01, 2025
7.8

HIGH

CVE-2025-21394

Microsoft Excel Remote Code Execution Vulnerability...

Affected Products : office 365_apps excel office_online_server office_long_term_servicing_channel office_macos_2024 office_macos_2021 excel_2016 office_2024 office_2021 +1 more products
Published: Feb. 11, 2025

Modified: Jul. 01, 2025
7.8

HIGH

CVE-2025-21392

Microsoft Office Remote Code Execution Vulnerability...

Affected Products : office 365_apps office_long_term_servicing_channel office_macos_2024 office_macos_2021 office_2016 office_2024 office_2021 office_2019
Published: Feb. 11, 2025

Modified: Jul. 01, 2025

Vuln Type: Memory Corruption

Showing 20 of 291570 Results

1
...
1276
1277
1278
1279
1280
1281
1282
...
14579

Latest CVE Feed

8.1

8.7

8.2

6.5

7.1

7.5

7.3

7.3

7.0

7.8

7.1

7.8

7.0

8.8

8.8

8.8

8.0

7.8

7.8

7.8

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable