8.8
CVE-2025-49723 - Windows StateRepository API Server file Tampering Vulnerability
Missing authorization in Windows StateRepository API allows an authorized attacker to perform tampering locally.
7.8
CVE-2025-49721 - Windows Fast FAT File System Driver Elevation of Privilege Vulnerability
Heap-based buffer overflow in Windows Fast FAT Driver allows an unauthorized attacker to elevate privileges locally.
7.5
CVE-2025-49719 - Microsoft SQL Server Information Disclosure Vulnerability
Improper input validation in SQL Server allows an unauthorized attacker to disclose information over a network.
8.5
CVE-2025-49717 - Microsoft SQL Server Remote Code Execution Vulnerability
Heap-based buffer overflow in SQL Server allows an authorized attacker to execute code over a network.
7.5
CVE-2025-49716 - Windows Netlogon Denial of Service Vulnerability
Uncontrolled resource consumption in Windows Netlogon allows an unauthorized attacker to deny service over a network.
7.8
CVE-2025-49711 - Microsoft Excel Remote Code Execution Vulnerability
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
5.5
CVE-2025-48812 - Microsoft Excel Information Disclosure Vulnerability
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
7.8
CVE-2025-47994 - Microsoft Office Elevation of Privilege Vulnerability
Deserialization of untrusted data in Microsoft Office allows an unauthorized attacker to elevate privileges locally.
7.8
CVE-2025-47993 - Microsoft PC Manager Elevation of Privilege Vulnerability
Improper access control in Microsoft PC Manager allows an authorized attacker to elevate privileges locally.
7.8
CVE-2025-47991 - Windows Input Method Editor (IME) Elevation of Privilege Vulnerability
Use after free in Microsoft Input Method Editor (IME) allows an authorized attacker to elevate privileges locally.