Microsoft Exploited Vulnerabilities
Microsoft vulnerabilities known to be exploited. Over the past 365 days, sorted by exploit discovery date.
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Stack-based Buffer Overflow in Windows Netlogon Affects Microsoft Products
CVE-2026-41089MicrosoftWindows Server 2012👾🟡📰9.8CRITICALDeserialization Vulnerability in Microsoft Office SharePoint
CVE-2026-45659MicrosoftMicrosoft Sharepoint E...📈💰👾🟡📰8.8HIGHHeap-Based Buffer Overflow in Microsoft Windows DNS Impacting Network Security
CVE-2026-41096MicrosoftWindows 11 Version 22h3📈👾🟡9.8CRITICALSecurity Feature Bypass in Windows by Microsoft
CVE-2026-45585MicrosoftWindows 11 Version 24h2📈💰👾🟡📰6.8MEDIUMElevation of Privilege Vulnerability in Microsoft Defender
CVE-2026-41091MicrosoftMicrosoft Malware Prot...📈💰👾🟡🦅📰7.8HIGHDenial of Service Vulnerability in Microsoft Defender by Microsoft
CVE-2026-45498MicrosoftMicrosoft Defender Ant...👾🦅4MEDIUMCross-Site Scripting Vulnerability in Microsoft Exchange Server
CVE-2026-42897MicrosoftMicrosoft Exchange Ser...📈💰👾🦅📰8.1HIGHWindows Kernel Elevation of Privilege Vulnerability in Microsoft Products
CVE-2026-40369MicrosoftWindows 11 Version 24h2📈👾🟡7.8HIGHUse After Free Vulnerability in Microsoft Office Word
CVE-2026-40361MicrosoftMicrosoft 365 Apps For...📈👾📰8.4HIGHMicrosoft Dynamics 365 Vulnerability Leading to Possible Code Execution
CVE-2026-42898MicrosoftMicrosoft Dynamics 365...👾📰9.9CRITICALInformation Disclosure Vulnerability in M365 Copilot by Microsoft
CVE-2026-26164MicrosoftMicrosoft 365 Copilot'...👾📰7.5HIGHImproper Authentication in Windows SMB Server by Microsoft
CVE-2026-26128MicrosoftWindows 10 Version 1607👾🟡7.8HIGHSecurity Bypass Vulnerability in Windows BitLocker by Microsoft
CVE-2025-48804MicrosoftWindows 10 Version 1507👾🟡6.8MEDIUMSpoofing Vulnerability in Windows Shell by Microsoft
CVE-2026-32202MicrosoftWindows 10 Version 1607📈💰👾EPSS 56%🦅📰4.3MEDIUMElevation of Privilege Vulnerability in ASP.NET Core by Microsoft
CVE-2026-40372MicrosoftAsp.net Core 10.0👾📰9.1CRITICALSpoofing Vulnerability in Windows Snipping Tool by Microsoft
CVE-2026-33829MicrosoftWindows 10 Version 1607🥇📈👾📰4.3MEDIUMInformation Disclosure Vulnerability in Microsoft 365 Copilot
CVE-2025-32711MicrosoftMicrosoft 365 Copilot📈👾🟡EPSS 19%9.3CRITICALCross-Site Scripting Vulnerability in Microsoft Office Excel
CVE-2026-26144MicrosoftMicrosoft 365 Apps For...👾📰7.5HIGHAccess Control Vulnerability in Microsoft Defender
CVE-2026-33825MicrosoftMicrosoft Defender Ant...🥇📈👾🟡🦅📰7.8HIGHInformation Disclosure Vulnerability in Copilot Studio by Microsoft
CVE-2026-21520MicrosoftMicrosoft Copilot Studio👾📰7.5HIGHSpoofing Vulnerability in Microsoft Office SharePoint
CVE-2026-32201MicrosoftMicrosoft Sharepoint E...🥇📈👾🟡🦅📰6.5MEDIUMPrivilege Elevation Vulnerability in Host Process for Windows Tasks by Microsoft
CVE-2025-60710MicrosoftWindows 11 Version 24h2📈👾EPSS 20%🦅📰7.8HIGHImproper Access Control in Microsoft SQL Server by Microsoft
CVE-2025-24999MicrosoftMicrosoft Sql Server 2...👾🟡8.8HIGHElevation of Privilege Vulnerability in Windows Common Log File System Driver by Microsoft
CVE-2025-60709MicrosoftWindows 10 Version 1607👾🟡7.8HIGHElevation of Privilege Vulnerability in Windows Accessibility Infrastructure by Microsoft
CVE-2026-24291MicrosoftWindows 10 Version 1607📈👾🟡7.8HIGH