Microsoft CISA Known Exploited Vulnerabilities

Cross-Site Scripting Vulnerability in Microsoft Exchange Server

CVE-2026-42897

MicrosoftMicrosoft Exchange Ser...📈💰👾EPSS 12%🦅📰8.1HIGH

Spoofing Vulnerability in Windows Shell by Microsoft

CVE-2026-32202

MicrosoftWindows 10 Version 1607📈💰👾🦅📰4.3MEDIUM

Access Control Vulnerability in Microsoft Defender

CVE-2026-33825

MicrosoftMicrosoft Defender Ant...🥇📈👾🟡🦅📰7.8HIGH

Spoofing Vulnerability in Microsoft Office SharePoint

CVE-2026-32201

MicrosoftMicrosoft Sharepoint E...🥇📈👾🟡🦅📰6.5MEDIUM

Privilege Elevation Vulnerability in Host Process for Windows Tasks by Microsoft

CVE-2025-60710

MicrosoftWindows 11 Version 24h2📈👾EPSS 29%🦅📰7.8HIGH

Remote Code Execution Vulnerability in Microsoft SharePoint

CVE-2026-20963

MicrosoftMicrosoft Sharepoint E...🥇📈👾🦅9.8CRITICAL

Security Feature Bypass in Windows Shell by Microsoft

CVE-2026-21510

MicrosoftWindows 10 Version 1607📈👾🦅8.8HIGH

Security Feature Bypass in MSHTML Framework by Microsoft

CVE-2026-21513

MicrosoftWindows 10 Version 1607📈💰👾EPSS 31%🦅📰8.8HIGH

Security Feature Bypass in Microsoft Office Word

CVE-2026-21514

MicrosoftMicrosoft 365 Apps For...👾🟡🦅7.8HIGH

Type Confusion Vulnerability in Desktop Window Manager by Microsoft

CVE-2026-21519

MicrosoftWindows 10 Version 1607👾🦅7.8HIGH

Denial of Service Vulnerability in Windows Remote Access Connection Manager by Microsoft

CVE-2026-21525

MicrosoftWindows 10 Version 1607👾🦅6.2MEDIUM

Privilege Escalation Vulnerability in Windows Remote Desktop by Microsoft

CVE-2026-21533

MicrosoftWindows 10 Version 1607📈👾🟡EPSS 20%🦅7.8HIGH

Security Feature Bypass in Microsoft Office

CVE-2026-21509

MicrosoftMicrosoft 365 Apps For...🥇📈👾🟡EPSS 12%🦅7.8HIGH

Information Disclosure Vulnerability in Microsoft Windows Desktop Manager

CVE-2026-20805

MicrosoftWindows 10 Version 1607🥇📈👾🟡🦅5.5MEDIUM

Elevation of Privilege Vulnerability in Windows Cloud Files Mini Filter Driver

CVE-2025-62221

MicrosoftWindows 10 Version 1809👾🦅📰7.8HIGH

Race Condition in Windows Kernel Allows Privilege Elevation by Authorized Users

CVE-2025-62215

MicrosoftWindows 10 Version 1809📈👾🟡🦅📰7HIGH

Remote Code Execution Vulnerability in Windows Server Update Service by Microsoft

CVE-2025-59287

MicrosoftWindows Server 2012🥇📈💰👾🟡EPSS 69%🦅📰9.8CRITICAL

Improper Access Control in Windows SMB Affects Microsoft Products

CVE-2025-33073

MicrosoftWindows 10 Version 1507🥇📈💰👾🟡EPSS 45%🦅📰8.8HIGH

Elevation of Privilege Vulnerability in Agere Modem Driver by Microsoft

CVE-2025-24990

MicrosoftWindows 10 Version 1507👾🟡🦅📰7.8HIGH

Elevation of Privilege Vulnerability in Windows Remote Access Connection Manager by Microsoft

CVE-2025-59230

MicrosoftWindows 10 Version 1507🥇📈👾🦅📰7.8HIGH

Code Injection Vulnerability in Microsoft Office SharePoint

CVE-2025-49704

MicrosoftMicrosoft Sharepoint E...📈💰👾EPSS 59%🦅📰8.8HIGH

Spoofing Vulnerability in Microsoft Office SharePoint

CVE-2025-49706

MicrosoftMicrosoft Sharepoint E...🥇📈💰👾🟡EPSS 74%🦅📰6.5MEDIUM

Deserialization Vulnerability in Microsoft SharePoint Server

CVE-2025-53770

MicrosoftMicrosoft Sharepoint E...🥇📈💰👾🟡EPSS 88%🦅📰9.8CRITICAL

Remote Code Execution Vulnerability in Microsoft WebDAV

CVE-2025-33053

MicrosoftWindows 10 Version 1507🥇📈💰👾🟡EPSS 50%🦅📰8.8HIGH

Vulnerability Published:

Sort By:

15 May 2026

Cross-Site Scripting Vulnerability in Microsoft Exchange Server

28 April 2026

Spoofing Vulnerability in Windows Shell by Microsoft

22 April 2026

Access Control Vulnerability in Microsoft Defender

14 April 2026

Spoofing Vulnerability in Microsoft Office SharePoint

13 April 2026

Privilege Elevation Vulnerability in Host Process for Windows Tasks by Microsoft

18 March 2026

Remote Code Execution Vulnerability in Microsoft SharePoint

10 February 2026

Security Feature Bypass in Windows Shell by Microsoft

Security Feature Bypass in MSHTML Framework by Microsoft

Security Feature Bypass in Microsoft Office Word

Type Confusion Vulnerability in Desktop Window Manager by Microsoft

Denial of Service Vulnerability in Windows Remote Access Connection Manager by Microsoft

Privilege Escalation Vulnerability in Windows Remote Desktop by Microsoft

26 January 2026

Security Feature Bypass in Microsoft Office

13 January 2026

Information Disclosure Vulnerability in Microsoft Windows Desktop Manager

9 December 2025

Elevation of Privilege Vulnerability in Windows Cloud Files Mini Filter Driver

12 November 2025

Race Condition in Windows Kernel Allows Privilege Elevation by Authorized Users

24 October 2025

Remote Code Execution Vulnerability in Windows Server Update Service by Microsoft

20 October 2025

Improper Access Control in Windows SMB Affects Microsoft Products

14 October 2025

Elevation of Privilege Vulnerability in Agere Modem Driver by Microsoft

Elevation of Privilege Vulnerability in Windows Remote Access Connection Manager by Microsoft

22 July 2025

Code Injection Vulnerability in Microsoft Office SharePoint

Spoofing Vulnerability in Microsoft Office SharePoint

20 July 2025

Deserialization Vulnerability in Microsoft SharePoint Server

10 June 2025

Remote Code Execution Vulnerability in Microsoft WebDAV