Microsoft CVEs & Vulnerabilities

1.621 CVEs affecting Microsoft products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

1.621 CVEs→ All vendors

Most Affected Products

windows 1.168windows server 2012 286windows 11 26h1 242windows server 2025 242windows 11 25h2 235windows 11 24h2 235windows server 2022 225windows 11 23h2 218
CVE-2026-40416MEDIUM

User interface (ui) misrepresentation of critical information in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

12 May 2026
4.3
CVSS
CVE-2026-40415HIGH

Use after free in Windows TCP/IP allows an unauthorized attacker to execute code over a network.

12 May 2026
8.1
CVSS
CVE-2026-40414HIGH

Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over an adjacent network.

12 May 2026
7.4
CVSS
CVE-2026-40413HIGH

Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over an adjacent network.

12 May 2026
7.4
CVSS
CVE-2026-40410HIGH

Use after free in Windows SMB Client allows an authorized attacker to elevate privileges locally.

12 May 2026
7.0
CVSS
CVE-2026-40408HIGH

Use after free in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.

12 May 2026
7.8
CVSS
CVE-2026-40407HIGH

Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

12 May 2026
7.8
CVSS
CVE-2026-40406HIGH

Use after free in Windows TCP/IP allows an unauthorized attacker to disclose information over a network.

12 May 2026
7.5
CVSS
CVE-2026-40405HIGH

Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over a network.

12 May 2026
7.5
CVSS
CVE-2026-40403HIGH

Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to execute code locally.

12 May 2026
8.8
CVSS
CVE-2026-40402CRITICAL

Use after free in Windows Hyper-V allows an unauthorized attacker to elevate privileges locally.

12 May 2026
9.3
CVSS
CVE-2026-40401HIGH

Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service locally.

12 May 2026
7.1
CVSS
CVE-2026-40399HIGH

Stack-based buffer overflow in Windows TCP/IP allows an authorized attacker to elevate privileges locally.

12 May 2026
7.8
CVSS
CVE-2026-40398HIGH

Heap-based buffer overflow in Windows Remote Desktop allows an authorized attacker to elevate privileges locally.

12 May 2026
7.8
CVSS
CVE-2026-40397HIGH

Integer underflow (wrap or wraparound) in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

12 May 2026
7.8
CVSS
CVE-2026-40382HIGH

Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally.

12 May 2026
7.8
CVSS
CVE-2026-40381HIGH

Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally.

12 May 2026
7.8
CVSS
CVE-2026-40380MEDIUM

Heap-based buffer overflow in Volume Manager Extension Driver allows an authorized attacker to execute code with a physical attack.

12 May 2026
6.2
CVSS
CVE-2026-40377HIGH

Heap-based buffer overflow in Windows Cryptographic Services allows an authorized attacker to elevate privileges locally.

12 May 2026
7.8
CVSS
CVE-2026-40369HIGH

Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally.

12 May 2026
7.8
CVSS
CVE-2026-40368HIGH

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

12 May 2026
8.0
CVSS
CVE-2026-40365HIGH

Insufficient granularity of access control in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

12 May 2026
8.8
CVSS
CVE-2026-40357HIGH

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

12 May 2026
8.8
CVSS
CVE-2026-35439HIGH

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

12 May 2026
8.8
CVSS
CVE-2026-35429MEDIUM

User interface (ui) misrepresentation of critical information in Microsoft Edge for Android allows an unauthorized attacker to perform spoofing over a network.

12 May 2026
4.3
CVSS
CVE-2026-35424HIGH

Missing release of memory after effective lifetime in Windows Internet Key Exchange (IKE) Protocol allows an unauthorized attacker to deny service over a network.

12 May 2026
7.5
CVSS
CVE-2026-35423MEDIUM

Out-of-bounds read in Telnet Client allows an unauthorized attacker to disclose information over a network.

12 May 2026
5.4
CVSS
CVE-2026-35422MEDIUM

Authentication bypass using an alternate path or channel in Windows TCP/IP allows an authorized attacker to bypass a security feature over a network.

12 May 2026
6.5
CVSS
CVE-2026-35421HIGH

Heap-based buffer overflow in Windows GDI allows an unauthorized attacker to execute code locally.

12 May 2026
7.8
CVSS
CVE-2026-35420HIGH

Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.

12 May 2026
7.8
CVSS
CVE-2026-35419MEDIUM

Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally.

12 May 2026
5.5
CVSS
CVE-2026-35418HIGH

Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.

12 May 2026
7.0
CVSS
CVE-2026-35417HIGH

Access of resource using incompatible type ('type confusion') in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.

12 May 2026
7.8
CVSS
CVE-2026-35416HIGH

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

12 May 2026
7.0
CVSS
CVE-2026-35415HIGH

Integer overflow or wraparound in Windows Storage Spaces Controller allows an authorized attacker to elevate privileges locally.

12 May 2026
7.8
CVSS
CVE-2026-34687HIGH

Illustrator versions 29.8.6, 30.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

12 May 2026
7.8
CVSS
CVE-2026-34663MEDIUM

Illustrator versions 29.8.6, 30.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to disclose sensitive information. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

12 May 2026
5.5
CVSS
CVE-2026-34662MEDIUM

Illustrator versions 29.8.6, 30.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

12 May 2026
5.5
CVSS
CVE-2026-34661HIGH

Illustrator versions 29.8.6, 30.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

12 May 2026
7.8
CVSS
CVE-2026-34638HIGH

Premiere Pro versions 26.0.2, 25.6.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

12 May 2026
7.8
CVSS
CVE-2026-34637HIGH

Premiere Pro versions 26.0.2, 25.6.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

12 May 2026
7.8
CVSS
CVE-2026-34636HIGH

Premiere Pro versions 26.0.2, 25.6.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

12 May 2026
7.8
CVSS
CVE-2026-34351HIGH

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an authorized attacker to elevate privileges locally.

12 May 2026
7.0
CVSS
CVE-2026-34350MEDIUM

Null pointer dereference in Windows Storport Miniport Driver allows an unauthorized attacker to deny service over a network.

12 May 2026
6.5
CVSS
CVE-2026-34347HIGH

Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

12 May 2026
7.0
CVSS
CVE-2026-34345HIGH

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

12 May 2026
7.0
CVSS
CVE-2026-34344HIGH

Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

12 May 2026
7.8
CVSS
CVE-2026-34343HIGH

Heap-based buffer overflow in Windows Application Identity (AppID) Subsystem allows an authorized attacker to elevate privileges locally.

12 May 2026
7.8
CVSS
← PrevPage 21 / 34Next →