CVE Monitor
CVE-2025-58724
HIGH
14 Oct 2025
Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally.
CVE-2025-58720
HIGH
14 Oct 2025
Use of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allows an authorized attacker to disclose information locally.
CVE-2025-58718
HIGH
14 Oct 2025
Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network.
CVE-2025-58714
HIGH
14 Oct 2025
Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
CVE-2025-55699
MEDIUM
14 Oct 2025
Exposure of sensitive information to an unauthorized actor in Windows Kernel allows an authorized attacker to disclose information locally.
CVE-2025-55698
HIGH
14 Oct 2025
Null pointer dereference in Windows DirectX allows an authorized attacker to deny service over a network.
CVE-2025-55697
HIGH
14 Oct 2025
Heap-based buffer overflow in Azure Local allows an authorized attacker to elevate privileges locally.
CVE-2025-55696
HIGH
14 Oct 2025
Time-of-check time-of-use (toctou) race condition in NtQueryInformation Token function (ntifs.h) allows an authorized attacker to elevate privileges locally.
CVE-2025-55695
MEDIUM
14 Oct 2025
Out-of-bounds read in Windows WLAN Auto Config Service allows an authorized attacker to disclose information locally.
CVE-2025-55694
HIGH
14 Oct 2025
Improper access control in Windows Error Reporting allows an authorized attacker to elevate privileges locally.
CVE-2025-55693
HIGH
14 Oct 2025
Use after free in Windows Kernel allows an unauthorized attacker to elevate privileges locally.
CVE-2025-55692
HIGH
14 Oct 2025
Improper input validation in Windows Error Reporting allows an authorized attacker to elevate privileges locally.
CVE-2025-55691
HIGH
14 Oct 2025
Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
CVE-2025-55690
HIGH
14 Oct 2025
Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
CVE-2025-55688
HIGH
14 Oct 2025
Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
CVE-2025-55684
HIGH
14 Oct 2025
Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
CVE-2025-55683
MEDIUM
14 Oct 2025
Exposure of sensitive information to an unauthorized actor in Windows Kernel allows an authorized attacker to disclose information locally.
CVE-2025-55682
MEDIUM
14 Oct 2025
Improper enforcement of behavioral workflow in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
CVE-2025-55680
HIGH
14 Oct 2025
Time-of-check time-of-use (toctou) race condition in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.
CVE-2025-55679
MEDIUM
14 Oct 2025
Improper input validation in Windows Kernel allows an unauthorized attacker to disclose information locally.
CVE-2025-55678
HIGH
14 Oct 2025
Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally.
CVE-2025-55337
MEDIUM
14 Oct 2025
Improper enforcement of behavioral workflow in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
CVE-2025-55334
MEDIUM
14 Oct 2025
Cleartext storage of sensitive information in Windows Kernel allows an unauthorized attacker to bypass a security feature locally.
CVE-2025-55332
MEDIUM
14 Oct 2025
Improper enforcement of behavioral workflow in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
CVE-2025-55331
HIGH
14 Oct 2025
Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
Page 177 of 687