5.3
CVE-2025-64667 - Microsoft Exchange Server Spoofing Vulnerability
User interface (ui) misrepresentation of critical information in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network.
7.5
CVE-2025-64658 - Windows File Explorer Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Shell allows an authorized attacker to elevate privileges locally.
7
CVE-2025-62573 - DirectX Graphics Kernel Elevation of Privilege Vulnerability
Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally.
7.8
CVE-2025-62572 - Application Information Service Elevation of Privilege Vulnerability
Out-of-bounds read in Application Information Services allows an authorized attacker to elevate privileges locally.
7.8
CVE-2025-62571 - Windows Installer Elevation of Privilege Vulnerability
Improper input validation in Windows Installer allows an authorized attacker to elevate privileges locally.
7.8
CVE-2025-62564 - Microsoft Excel Remote Code Execution Vulnerability
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
CVE-2025-62563 - Microsoft Excel Remote Code Execution Vulnerability
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
CVE-2025-62562 - Microsoft Outlook Remote Code Execution Vulnerability
Use after free in Microsoft Office Outlook allows an unauthorized attacker to execute code locally.
7.8
CVE-2025-62561 - Microsoft Excel Remote Code Execution Vulnerability
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
8.8
CVE-2025-62549 - Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
Untrusted pointer dereference in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.