17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 10151-10200 of 17282 CVEs Page 204 of 346
CVE-2025-62571
7.8
Microsoft Multiple Products

Improper input validation in Windows Installer allows an authorized attacker to elevate privileges locally

2025-12-10
CVE-2025-62564
7.8
Microsoft Multiple Products

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally

2025-12-10
CVE-2025-62563
7.8
Microsoft Multiple Products

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally

2025-12-10
CVE-2025-62562
Analyzed
7.8
Microsoft Multiple Products

Use after free in Microsoft Office Outlook allows an unauthorized attacker to execute code locally

2025-12-10
CVE-2025-62561
7.8
Microsoft Multiple Products

Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally

2025-12-10
CVE-2025-62560
7.8
Microsoft Multiple Products

Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally

2025-12-10
CVE-2025-62559
Analyzed
7.8
Microsoft Multiple Products

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally

2025-12-10
CVE-2025-62558
Analyzed
7.8
Microsoft Multiple Products

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally

2025-12-10
CVE-2025-62557
Analyzed
8.4
Microsoft Multiple Products

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally

2025-12-10
CVE-2025-62556
7.8
Microsoft Multiple Products

Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally

2025-12-10
CVE-2025-62554
8.4
Microsoft Multiple Products

Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally

2025-12-10
CVE-2025-62553
Analyzed
7.8
Microsoft Multiple Products

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally

2025-12-10
CVE-2025-62552
7.8
Microsoft Multiple Products

Relative path traversal in Microsoft Office Access allows an unauthorized attacker to execute code locally

2025-12-10
CVE-2025-62550
8.8
Microsoft Multiple Products

Out-of-bounds write in Azure Monitor Agent allows an authorized attacker to execute code over a network

2025-12-10
CVE-2025-62549
Analyzed
8.8
Microsoft Multiple Products

Untrusted pointer dereference in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network

2025-12-10
CVE-2025-6254
Analyzed
9.8
WordPress Doctreat Core Plugin for WordPress

The Doctreat Core plugin for WordPress contains an unauthenticated privilege escalation vulnerability allowing attackers to register as administrators...

2026-06-11
CVE-2025-62527
7.1
Taguette Multiple Products

Taguette is an open source qualitative research tool

2025-10-20
CVE-2025-62526
7.9
Linux Multiple Products

OpenWrt Project is a Linux operating system targeting embedded devices

2025-10-22
CVE-2025-62525
7.9
Linux Multiple Products

OpenWrt Project is a Linux operating system targeting embedded devices

2025-10-22
CVE-2025-62521
Analyzed
10
HP Multiple Products

ChurchCRM is an open-source church management system. Prior to version 5.21.0, a pre-authentication remote code execution vulnerability in ChurchCRM's...

2025-12-18
CVE-2025-62519
Analyzed
7.2
HP Multiple Products

phpMyFAQ is an open source FAQ web application

2025-11-18
CVE-2025-62518
8.1
Unknown Multiple Products

astral-tokio-tar is a tar archive reading/writing library for async Rust

2025-10-21
CVE-2025-62516
Analyzed
9.8
Landlord Onboarding Multiple Products

Landlord Onboarding & Rental Signup introduces the landlord onboarding workflow and rental signup system for VivaTurbo Rentals & Property Services. In...

2025-10-27
CVE-2025-62515
Analyzed
9.8
Unknown Multiple Products

pyquokka is a framework for making data lakes work for time series. In versions 0.3.1 and prior, the FlightServer class directly uses pickle.loads() t...

2025-10-17
CVE-2025-62514
8.3
Parsec Multiple Products

Parsec is a cloud-based application for cryptographically secure file sharing

2026-01-30
CVE-2025-62510
Analyzed
8.1
HP Multiple Products

FileRise is a self-hosted web-based file manager with multi-file upload, editing, and batch operations

2025-10-20
CVE-2025-62509
Analyzed
8.1
HP Multiple Products

FileRise is a self-hosted web-based file manager with multi-file upload, editing, and batch operations

2025-10-20
CVE-2025-62506
8.1
MinIO Multiple Products

MinIO is a high-performance object storage system

2025-10-16
CVE-2025-62498
8.8
Unknown Multiple Products

A relative path traversal (ZipSlip) vulnerability was discovered in Productivity Suite software version 4

2025-10-23
CVE-2025-62484
8.1
Zoom Multiple Products

Inefficient regular expression complexity in certain Zoom Workplace Clients before version 6

2025-11-14
CVE-2025-62481
Analyzed
9.8
Oracle Multiple Products

Vulnerability in the Oracle Marketing product of Oracle E-Business Suite (component: Marketing Administration). Supported versions that are affected...

2025-10-21
CVE-2025-6248
7.4
Unknown Multiple Products

A cross-site scripting (XSS) vulnerability was reported in the Lenovo Browser that could allow an attacker to obtain sensitive information if a user v...

2025-07-17
CVE-2025-62474
Analyzed
7.8
Microsoft Multiple Products

Improper access control in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges locally

2025-12-10
CVE-2025-62472
Analyzed
7.8
Microsoft Multiple Products

Use of uninitialized resource in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges locally

2025-12-10
CVE-2025-62470
Analyzed
7.8
Microsoft Multiple Products

Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally

2025-12-10
CVE-2025-62467
7.8
Microsoft Multiple Products

Integer overflow or wraparound in Windows Projected File System allows an authorized attacker to elevate privileges locally

2025-12-10
CVE-2025-62466
7.8
Microsoft Multiple Products

Null pointer dereference in Windows Client-Side Caching (CSC) Service allows an authorized attacker to elevate privileges locally

2025-12-10
CVE-2025-62464
7.8
Microsoft Multiple Products

Buffer over-read in Windows Projected File System allows an authorized attacker to elevate privileges locally

2025-12-10
CVE-2025-62462
7.8
Microsoft Multiple Products

Buffer over-read in Windows Projected File System allows an authorized attacker to elevate privileges locally

2025-12-10
CVE-2025-62461
7.8
Microsoft Multiple Products

Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to elevate privileges locally

2025-12-10
CVE-2025-62459
Analyzed
8.3
Microsoft Multiple Products

Microsoft Defender Portal Spoofing Vulnerability

2025-11-20
CVE-2025-62458
Analyzed
7.8
Microsoft Multiple Products

Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally

2025-12-10
CVE-2025-62457
7.8
Microsoft Multiple Products

Out-of-bounds read in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally

2025-12-10
CVE-2025-62456
Analyzed
8.8
Microsoft Multiple Products

Heap-based buffer overflow in Windows Resilient File System (ReFS) allows an authorized attacker to execute code over a network

2025-12-10
CVE-2025-62455
7.8
Microsoft Multiple Products

Improper input validation in Windows Message Queuing allows an authorized attacker to elevate privileges locally

2025-12-10
CVE-2025-62454
Analyzed
7.8
Microsoft Multiple Products

Heap-based buffer overflow in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally

2025-12-10
CVE-2025-62452
Analyzed
8
Microsoft Multiple Products

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network

2025-11-13
CVE-2025-62429
7.2
ClipBucket Multiple Products

ClipBucket v5 is an open source video sharing platform

2025-10-20
CVE-2025-62425
Analyzed
8.3
MAS Multiple Products

MAS (Matrix Authentication Service) is a user management and authentication service for Matrix homeservers, written and maintained by Element

2025-10-16
CVE-2025-6242
7.1
Unknown Multiple Products

A Server-Side Request Forgery (SSRF) vulnerability exists in the MediaConnector class within the vLLM project's multimodal feature set

2025-10-07