Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

5.5

MEDIUM

CVE-2025-33055

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally....

Affected Products : windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_10_1507 windows_11_23h2 +4 more products
Published: Jun. 10, 2025

Modified: Jul. 08, 2025

Vuln Type: Information Disclosure
8.8

HIGH

CVE-2025-33053

External control of file name or path in Internet Shortcut Files allows an unauthorized attacker to execute code over a network....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +9 more products
Actively Exploited

Published: Jun. 10, 2025

Modified: Jun. 21, 2025

Vuln Type: Path Traversal
5.5

MEDIUM

CVE-2025-33052

Use of uninitialized resource in Windows DWM Core Library allows an authorized attacker to disclose information locally....

Affected Products : windows_server_2019 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_11_23h2 windows_server_2022_23h2 windows_server_23h2 windows_11_24h2 +1 more products
Published: Jun. 10, 2025

Modified: Jul. 10, 2025

Vuln Type: Information Disclosure
7.5

HIGH

CVE-2025-33050

Protection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny service over a network....

Affected Products : windows_server_2016 windows_server_2019 windows_server_2022 windows_server_2022_23h2 windows_server_23h2 windows_server_2025
Published: Jun. 10, 2025

Modified: Jul. 10, 2025

Vuln Type: Denial of Service
7.5

HIGH

CVE-2025-32725

Protection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny service over a network....

Affected Products : windows_server_2016 windows_server_2019 windows_server_2022 windows_server_2022_23h2 windows_server_23h2 windows_server_2025
Published: Jun. 10, 2025

Modified: Jul. 10, 2025

Vuln Type: Denial of Service
7.5

HIGH

CVE-2025-32724

Uncontrolled resource consumption in Windows Local Security Authority Subsystem Service (LSASS) allows an unauthorized attacker to deny service over a network....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +9 more products
Published: Jun. 10, 2025

Modified: Jul. 10, 2025

Vuln Type: Denial of Service
5.5

MEDIUM

CVE-2025-32722

Improper access control in Windows Storage Port Driver allows an authorized attacker to disclose information locally....

Affected Products : windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_10_1507 +6 more products
Published: Jun. 10, 2025

Modified: Jul. 10, 2025

Vuln Type: Authorization
7.3

HIGH

CVE-2025-32721

Improper link resolution before file access ('link following') in Windows Recovery Driver allows an authorized attacker to elevate privileges locally....

Affected Products : windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_10_1507 windows_11_23h2 +4 more products
Published: Jun. 10, 2025

Modified: Jul. 10, 2025

Vuln Type: Authorization
5.5

MEDIUM

CVE-2025-32720

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally....

Affected Products : windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_10_1507 +6 more products
Published: Jun. 10, 2025

Modified: Jul. 08, 2025

Vuln Type: Information Disclosure
5.5

MEDIUM

CVE-2025-32719

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally....

Affected Products : windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_10_1507 windows_11_23h2 +4 more products
Published: Jun. 10, 2025

Modified: Jul. 08, 2025

Vuln Type: Information Disclosure
7.8

HIGH

CVE-2025-32718

Integer overflow or wraparound in Windows SMB allows an authorized attacker to elevate privileges locally....

Affected Products : windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_10_1507 +6 more products
Published: Jun. 10, 2025

Modified: Jul. 10, 2025

Vuln Type: Authorization
7.8

HIGH

CVE-2025-32716

Out-of-bounds read in Windows Media allows an authorized attacker to elevate privileges locally....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +7 more products
Published: Jun. 10, 2025

Modified: Jul. 10, 2025

Vuln Type: Memory Corruption
6.5

MEDIUM

CVE-2025-32715

Out-of-bounds read in Remote Desktop Client allows an unauthorized attacker to disclose information over a network....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +12 more products
Published: Jun. 10, 2025

Modified: Jul. 07, 2025

Vuln Type: Information Disclosure
7.8

HIGH

CVE-2025-32714

Improper access control in Windows Installer allows an authorized attacker to elevate privileges locally....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +9 more products
Published: Jun. 10, 2025

Modified: Jul. 10, 2025

Vuln Type: Authorization
7.8

HIGH

CVE-2025-32713

Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +9 more products
Published: Jun. 10, 2025

Modified: Jul. 10, 2025

Vuln Type: Memory Corruption
7.8

HIGH

CVE-2025-32712

Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +9 more products
Published: Jun. 10, 2025

Modified: Jul. 10, 2025

Vuln Type: Memory Corruption
8.1

HIGH

CVE-2025-32710

Use after free in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server_2022 windows_server_2022_23h2 windows_server_23h2 windows_server_2012_r2 windows_server_2008_r2 windows_server_2008_sp2 +1 more products
Published: Jun. 10, 2025

Modified: Jul. 10, 2025

Vuln Type: Memory Corruption
7.2

HIGH

CVE-2025-31104

An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability [CWE-78] in FortiADC 7.6.0 through 7.6.1, 7.4.0 through 7.4.6, 7.2.0 through 7.2.7, 7.1.0 through 7.1.4, 7.0 all versions, 6.2 all versions, 6.1 al...

Affected Products : fortiadc
Published: Jun. 10, 2025

Modified: Jul. 22, 2025

Vuln Type: Injection
5.5

MEDIUM

CVE-2025-30321

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption in ...

Affected Products : macos windows indesign
Published: Jun. 10, 2025

Modified: Jun. 16, 2025

Vuln Type: Denial of Service
7.8

HIGH

CVE-2025-30317

InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in tha...

Affected Products : macos windows indesign
Published: Jun. 10, 2025

Modified: Jun. 16, 2025

Vuln Type: Memory Corruption

Showing 20 of 292774 Results

1
...
540
541
542
543
544
545
546
...
14639

Browse by Apps

Latest CVE Feed

5.5

8.8

5.5

7.5

7.5

7.5

5.5

7.3

5.5

5.5

7.8

7.8

6.5

7.8

7.8

7.8

8.1

7.2

5.5

7.8

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable