Количество 19 635
Количество 19 635
CVE-2025-27483
NTFS Elevation of Privilege Vulnerability
CVE-2025-27482
Windows Remote Desktop Services Remote Code Execution Vulnerability
CVE-2025-27481
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-27480
Windows Remote Desktop Services Remote Code Execution Vulnerability
CVE-2025-27479
Kerberos Key Distribution Proxy Service Denial of Service Vulnerability
CVE-2025-27478
Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability
CVE-2025-27477
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-27476
Windows Digital Media Elevation of Privilege Vulnerability
CVE-2025-27475
Windows Update Stack Elevation of Privilege Vulnerability
CVE-2025-27474
Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
CVE-2025-27473
HTTP.sys Denial of Service Vulnerability
CVE-2025-27472
Windows Mark of the Web Security Feature Bypass Vulnerability
CVE-2025-27471
Microsoft Streaming Service Denial of Service Vulnerability
CVE-2025-27470
Windows Standards-Based Storage Management Service Denial of Service Vulnerability
CVE-2025-27469
Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability
CVE-2025-27468
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
CVE-2025-27467
Windows Digital Media Elevation of Privilege Vulnerability
CVE-2025-27423
Improper Input Validation in Vim
CVE-2025-27363
An out of bounds write exists in FreeType versions 2.13.0 and below (newer versions of FreeType are not vulnerable) when attempting to parse font subglyph structures related to TrueType GX and variable font files. The vulnerable code assigns a signed short value to an unsigned long and then adds a static value causing it to wrap around and allocate too small of a heap buffer. The code then writes up to 6 signed long integers out of bounds relative to this buffer. This may result in arbitrary code execution. This vulnerability may have been exploited in the wild.
CVE-2025-27221
In the URI gem before 1.0.3 for Ruby, the URI handling methods (URI.join, URI#merge, URI#+) have an inadvertent leakage of authentication credentials because userinfo is retained even after changing the host.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-27483 NTFS Elevation of Privilege Vulnerability | CVSS3: 7.8 | 1% Низкий | около 1 года назад |
| CVE-2025-27482 Windows Remote Desktop Services Remote Code Execution Vulnerability | CVSS3: 8.1 | 0% Низкий | около 1 года назад |
| CVE-2025-27481 Windows Telephony Service Remote Code Execution Vulnerability | CVSS3: 8.8 | 1% Низкий | около 1 года назад |
| CVE-2025-27480 Windows Remote Desktop Services Remote Code Execution Vulnerability | CVSS3: 8.1 | 1% Низкий | около 1 года назад |
| CVE-2025-27479 Kerberos Key Distribution Proxy Service Denial of Service Vulnerability | CVSS3: 7.5 | 39% Средний | около 1 года назад |
| CVE-2025-27478 Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability | CVSS3: 7 | 0% Низкий | около 1 года назад |
| CVE-2025-27477 Windows Telephony Service Remote Code Execution Vulnerability | CVSS3: 8.8 | 4% Низкий | около 1 года назад |
| CVE-2025-27476 Windows Digital Media Elevation of Privilege Vulnerability | CVSS3: 7.8 | 1% Низкий | около 1 года назад |
| CVE-2025-27475 Windows Update Stack Elevation of Privilege Vulnerability | CVSS3: 7 | 0% Низкий | около 1 года назад |
| CVE-2025-27474 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability | CVSS3: 6.5 | 4% Низкий | около 1 года назад |
| CVE-2025-27473 HTTP.sys Denial of Service Vulnerability | CVSS3: 7.5 | 42% Средний | около 1 года назад |
| CVE-2025-27472 Windows Mark of the Web Security Feature Bypass Vulnerability | CVSS3: 5.4 | 3% Низкий | около 1 года назад |
| CVE-2025-27471 Microsoft Streaming Service Denial of Service Vulnerability | CVSS3: 5.9 | 1% Низкий | около 1 года назад |
| CVE-2025-27470 Windows Standards-Based Storage Management Service Denial of Service Vulnerability | CVSS3: 7.5 | 39% Средний | около 1 года назад |
| CVE-2025-27469 Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability | CVSS3: 7.5 | 42% Средний | около 1 года назад |
| CVE-2025-27468 Windows Kernel-Mode Driver Elevation of Privilege Vulnerability | CVSS3: 7 | 0% Низкий | 11 месяцев назад |
| CVE-2025-27467 Windows Digital Media Elevation of Privilege Vulnerability | CVSS3: 7.8 | 1% Низкий | 12 месяцев назад |
| CVE-2025-27423 Improper Input Validation in Vim | CVSS3: 7.1 | 1% Низкий | около 1 года назад |
| CVE-2025-27363 An out of bounds write exists in FreeType versions 2.13.0 and below (newer versions of FreeType are not vulnerable) when attempting to parse font subglyph structures related to TrueType GX and variable font files. The vulnerable code assigns a signed short value to an unsigned long and then adds a static value causing it to wrap around and allocate too small of a heap buffer. The code then writes up to 6 signed long integers out of bounds relative to this buffer. This may result in arbitrary code execution. This vulnerability may have been exploited in the wild. | CVSS3: 8.1 | 65% Средний | около 1 года назад |
| CVE-2025-27221 In the URI gem before 1.0.3 for Ruby, the URI handling methods (URI.join, URI#merge, URI#+) have an inadvertent leakage of authentication credentials because userinfo is retained even after changing the host. | CVSS3: 3.2 | 0% Низкий | около 1 года назад |
Уязвимостей на страницу