Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

6.5

MEDIUM

CVE-2025-29958

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +9 more products
Published: May. 13, 2025

Modified: May. 19, 2025

Vuln Type: Information Disclosure
6.2

MEDIUM

CVE-2025-29957

Uncontrolled resource consumption in Windows Deployment Services allows an unauthorized attacker to deny service locally....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +9 more products
Published: May. 13, 2025

Modified: May. 19, 2025

Vuln Type: Denial of Service
5.4

MEDIUM

CVE-2025-29956

Buffer over-read in Windows SMB allows an authorized attacker to disclose information over a network....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +9 more products
Published: May. 13, 2025

Modified: May. 19, 2025

Vuln Type: Information Disclosure
6.2

MEDIUM

CVE-2025-29955

Improper input validation in Windows Hyper-V allows an unauthorized attacker to deny service locally....

Affected Products : windows_server_2022_23h2 windows_server_23h2 windows_11_24h2 windows_server_2025
Published: May. 13, 2025

Modified: May. 19, 2025

Vuln Type: Denial of Service
5.9

MEDIUM

CVE-2025-29954

Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +7 more products
Published: May. 13, 2025

Modified: May. 19, 2025

Vuln Type: Denial of Service
7.5

HIGH

CVE-2025-29842

Acceptance of extraneous untrusted data with trusted data in UrlMon allows an unauthorized attacker to bypass a security feature over a network....

Affected Products : windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_10_1507 windows_11_23h2 +4 more products
Published: May. 13, 2025

Modified: May. 19, 2025

Vuln Type: Authorization
7.0

HIGH

CVE-2025-29841

Concurrent execution using shared resource with improper synchronization ('race condition') in Universal Print Management Service allows an authorized attacker to elevate privileges locally....

Affected Products : windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_11_23h2 windows_server_2022_23h2 windows_server_23h2 windows_11_24h2 windows_server_2025
Published: May. 13, 2025

Modified: May. 19, 2025

Vuln Type: Race Condition
8.8

HIGH

CVE-2025-29840

Stack-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network....

Affected Products : windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_10_1507 windows_11_23h2 +3 more products
Published: May. 13, 2025

Modified: Jun. 23, 2025

Vuln Type: Memory Corruption
4.0

MEDIUM

CVE-2025-29839

Out-of-bounds read in Windows File Server allows an unauthorized attacker to disclose information locally....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +9 more products
Published: May. 13, 2025

Modified: May. 19, 2025

Vuln Type: Information Disclosure
7.4

HIGH

CVE-2025-29838

Null pointer dereference in Windows Drivers allows an unauthorized attacker to elevate privileges locally....

Affected Products : windows_11_24h2 windows_server_2025
Published: May. 13, 2025

Modified: May. 19, 2025

Vuln Type: Authorization
5.5

MEDIUM

CVE-2025-29837

Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to disclose information locally....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +9 more products
Published: May. 13, 2025

Modified: May. 19, 2025

Vuln Type: Information Disclosure
6.5

MEDIUM

CVE-2025-29836

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +9 more products
Published: May. 13, 2025

Modified: May. 19, 2025

Vuln Type: Information Disclosure
6.5

MEDIUM

CVE-2025-29835

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +8 more products
Published: May. 13, 2025

Modified: May. 19, 2025

Vuln Type: Information Disclosure
7.7

HIGH

CVE-2025-29833

Time-of-check time-of-use (toctou) race condition in Windows Virtual Machine Bus allows an unauthorized attacker to execute code locally....

Affected Products : windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_10_1507 +6 more products
Published: May. 13, 2025

Modified: May. 19, 2025

Vuln Type: Race Condition
6.5

MEDIUM

CVE-2025-29832

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +9 more products
Published: May. 13, 2025

Modified: May. 19, 2025

Vuln Type: Information Disclosure
7.5

HIGH

CVE-2025-29831

Use after free in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server_2022 windows_server_2022_23h2 windows_server_23h2 windows_server_2012_r2 windows_server_2008_r2 windows_server_2025
Published: May. 13, 2025

Modified: May. 19, 2025

Vuln Type: Memory Corruption
6.5

MEDIUM

CVE-2025-29830

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +9 more products
Published: May. 13, 2025

Modified: May. 19, 2025

Vuln Type: Information Disclosure
5.5

MEDIUM

CVE-2025-29829

Use of uninitialized resource in Windows Trusted Runtime Interface Driver allows an authorized attacker to disclose information locally....

Affected Products : windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_10_1507 windows_11_23h2 +4 more products
Published: May. 13, 2025

Modified: May. 19, 2025

Vuln Type: Information Disclosure
8.8

HIGH

CVE-2025-29826

Improper handling of insufficient permissions or privileges in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network....

Affected Products : dataverse
Published: May. 13, 2025

Modified: May. 19, 2025

Vuln Type: Authorization
6.7

MEDIUM

CVE-2025-27488

Use of hard-coded credentials in Windows Hardware Lab Kit allows an authorized attacker to elevate privileges locally....

Affected Products : windows_server_2019 windows_10_1809 windows_10_20h2 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_10_21h1 windows_10_2004 windows_11_24h2 +13 more products
Published: May. 13, 2025

Modified: May. 19, 2025

Vuln Type: Authentication

Showing 20 of 293620 Results

1
...
753
754
755
756
757
758
759
...
14681

Browse by Apps

Latest CVE Feed

6.5

6.2

5.4

6.2

5.9

7.5

7.0

8.8

4.0

7.4

5.5

6.5

6.5

7.7

6.5

7.5

6.5

5.5

8.8

6.7

CVEFeed.io UI Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable