CVE Database

37604+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2025-20052
7.3 HIGH

Improper access control for some Intel(R) Graphics software may allow an authenticated user to potentially enable denial of service via local access.

May 13, 2025
CVE-2025-20046
8.0 HIGH

Use after free for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23.100 may allow an unauthenticated user to potentially enable denial of service …

May 13, 2025
CVE-2025-20032
7.9 HIGH

Improper input validation for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23.100 may allow a privileged user to potentially enable denial of service …

May 13, 2025
CVE-2025-20018
8.4 HIGH

Untrusted pointer dereference for some Intel(R) Graphics Drivers may allow an authenticated user to potentially enable escalation of privilege via local access.

May 13, 2025
CVE-2025-20008
7.7 HIGH

Insecure inherited permissions for some Intel(R) Simics(R) Package Manager software before version 1.12.0 may allow a privileged user to potentially enable escalation of privilege via …

May 13, 2025
CVE-2025-20006
7.4 HIGH

Use after free for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23.100 may allow an unauthenticated user to potentially enable denial of service …

May 13, 2025
CVE-2025-20004
7.2 HIGH

Insufficient control flow management in the Alias Checking Trusted Module for some Intel(R) Xeon(R) 6 processor E-Cores firmware may allow a privileged user to potentially …

May 13, 2025
CVE-2025-20003
8.2 HIGH

Improper link resolution before file access ('Link Following') for some Intel(R) Graphics Driver software installers may allow an authenticated user to potentially enable escalation of …

May 13, 2025
CVE-2024-45333
7.3 HIGH

Improper access control for some Intel(R) Data Center GPU Flex Series for Windows driver before version 31.0.101.4314 may allow an authenticated user to potentially enable …

May 13, 2025
CVE-2024-36292
7.3 HIGH

Improper buffer restrictions for some Intel(R) Data Center GPU Flex Series for Windows driver before version 31.0.101.4314 may allow an authenticated user to potentially enable …

May 13, 2025
CVE-2025-3744
7.6 HIGH

Nomad Enterprise (“Nomad”) jobs using the policy override option are bypassing the mandatory sentinel policies. This vulnerability, identified as CVE-2025-3744, is fixed in Nomad Enterprise …

May 13, 2025
CVE-2025-43557
7.8 HIGH

Animate versions 24.0.8, 23.0.11 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context …

May 13, 2025
CVE-2025-43556
7.8 HIGH

Animate versions 24.0.8, 23.0.11 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context …

May 13, 2025
CVE-2025-43555
7.8 HIGH

Animate versions 24.0.8, 23.0.11 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the …

May 13, 2025
CVE-2025-43547
7.8 HIGH

Bridge versions 15.0.3, 14.1.6 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context …

May 13, 2025
CVE-2025-43546
7.8 HIGH

Bridge versions 15.0.3, 14.1.6 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the …

May 13, 2025
CVE-2025-43545
7.8 HIGH

Bridge versions 15.0.3, 14.1.6 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context …

May 13, 2025
CVE-2025-30330
7.8 HIGH

Illustrator versions 29.3, 28.7.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of …

May 13, 2025
CVE-2025-30328
7.8 HIGH

Animate versions 24.0.8, 23.0.11 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the …

May 13, 2025
CVE-2025-30326
7.8 HIGH

Photoshop Desktop versions 26.5, 25.12.2 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the …

May 13, 2025
CVE-2025-30325
7.8 HIGH

Photoshop Desktop versions 26.5, 25.12.2 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the …

May 13, 2025
CVE-2025-30324
7.8 HIGH

Photoshop Desktop versions 26.5, 25.12.2 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in …

May 13, 2025
CVE-2025-30322
7.8 HIGH

Substance3D - Painter versions 11.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of …

May 13, 2025
CVE-2025-27197
7.8 HIGH

Lightroom Desktop versions 8.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the …

May 13, 2025
CVE-2023-31359
7.3 HIGH

Incorrect default permissions in the AMD Manageability API could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution.

May 13, 2025
CVE-2023-31358
7.3 HIGH

A DLL hijacking vulnerability in the AMD Manageability API could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution.

May 13, 2025
CVE-2025-32709
7.8 HIGH KEV

Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

May 13, 2025
CVE-2025-32707
7.8 HIGH

Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.

May 13, 2025
CVE-2025-32706
7.8 HIGH KEV

Improper input validation in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

May 13, 2025
CVE-2025-32705
7.8 HIGH

Out-of-bounds read in Microsoft Office Outlook allows an unauthorized attacker to execute code locally.

May 13, 2025
CVE-2025-32704
8.4 HIGH

Buffer over-read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

May 13, 2025
CVE-2025-32702
7.8 HIGH

Improper neutralization of special elements used in a command ('command injection') in Visual Studio allows an unauthorized attacker to execute code locally.

May 13, 2025
CVE-2025-32701
7.8 HIGH KEV

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

May 13, 2025
CVE-2025-30400
7.8 HIGH KEV

Use after free in Windows DWM allows an authorized attacker to elevate privileges locally.

May 13, 2025
CVE-2025-30397
7.5 HIGH KEV

Access of resource using incompatible type ('type confusion') in Microsoft Scripting Engine allows an unauthorized attacker to execute code over a network.

May 13, 2025
CVE-2025-30393
7.8 HIGH

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

May 13, 2025
CVE-2025-30388
7.8 HIGH

Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.

May 13, 2025
CVE-2025-30386
8.4 HIGH

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

May 13, 2025
CVE-2025-30385
7.8 HIGH

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

May 13, 2025
CVE-2025-30384
7.4 HIGH

Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker to execute code locally.

May 13, 2025
CVE-2025-30383
7.8 HIGH

Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

May 13, 2025
CVE-2025-30382
7.8 HIGH

Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker to execute code locally.

May 13, 2025
CVE-2025-30381
7.8 HIGH

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

May 13, 2025
CVE-2025-30379
7.8 HIGH

Release of invalid pointer or reference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

May 13, 2025
CVE-2025-30378
7.0 HIGH

Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker to execute code locally.

May 13, 2025
CVE-2025-30377
8.4 HIGH

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

May 13, 2025
CVE-2025-30376
7.8 HIGH

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

May 13, 2025
CVE-2025-30375
7.8 HIGH

Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

May 13, 2025
CVE-2025-30318
7.8 HIGH

InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of …

May 13, 2025
CVE-2025-30310
7.8 HIGH

Dreamweaver Desktop versions 21.4 and earlier are affected by an Access of Resource Using Incompatible Type ('Type Confusion') vulnerability that could result in arbitrary code …

May 13, 2025

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.