Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Microsoft — Vulnerabilities & Security Advisories 8272

Browse all 8272 CVE security advisories affecting Microsoft. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Microsoft:Windows 10 Version 1809WindowsWindows 10 Version 1507Windows 10 Version 1803Windows 10 Version 1607Windows Server 2019Microsoft 365 Apps for EnterpriseMicrosoft SharePoint Enterprise Server 2016Microsoft Edge (Chromium-based)Microsoft Office 2019Microsoft EdgeWindows 7Windows 10 Version 2004Windows 10 Version 20H2Windows 11 Version 24H2Windows 10 Version 2004 for 32-bit SystemsAzure Site Recovery VMWare to AzureWindows 10 Version 1703Microsoft SQL Server 2017 (GDR)Windows Server 2022Microsoft OfficeWindows Server 2016Microsoft SharePoint Enterprise ServerInternet Explorer 9Windows 11 version 22H2ChakraCoreInternet Explorer 11Windows Server 2008 R2 Service Pack 1Windows 10 Version 21H2Visual Studio Code
CVE IDTitleCVSSSeverityPublished
CVE-2025-47733 Microsoft Power Apps Information Disclosure Vulnerability — Microsoft Power PagesCWE-918 9.1 Critical2025-05-08
CVE-2025-29813 Azure DevOps Elevation of Privilege Vulnerability — Azure DevOpsCWE-302 10.0 Critical2025-05-08
CVE-2025-29827 Azure Automation Elevation of Privilege Vulnerability — Azure AutomationCWE-285 9.9 Critical2025-05-08
CVE-2025-29972 Azure Storage Resource Provider Spoofing Vulnerability — Azure Storage Resource Provider (SRP)CWE-918 9.9 Critical2025-05-08
CVE-2025-33072 Microsoft msagsfeedback.azurewebsites.net Information Disclosure Vulnerability — Microsoft msagsfeedback.azurewebsites.netCWE-284 8.1 High2025-05-08
CVE-2025-29825 Microsoft Edge (Chromium-based) Spoofing Vulnerability — Microsoft Edge (Chromium-based)CWE-451 6.5 Medium2025-05-02
CVE-2025-21416 Azure Virtual Desktop Elevation of Privilege Vulnerability — Azure Virtual DesktopCWE-862 8.5 High2025-04-30
CVE-2025-30392 Azure AI Bot Elevation of Privilege Vulnerability — Azure AI Bot ServiceCWE-285 9.8 Critical2025-04-30
CVE-2025-30390 Azure ML Compute Elevation of Privilege Vulnerability — Azure Machine LearningCWE-285 9.9 Critical2025-04-30
CVE-2025-33074 Azure Functions Remote Code Execution Vulnerability — Azure FunctionsCWE-347 7.5 High2025-04-30
CVE-2025-30389 Azure Bot Framework SDK Elevation of Privilege Vulnerability — Azure AI Bot ServiceCWE-285 8.7 High2025-04-30
CVE-2025-30391 Microsoft Dynamics Information Disclosure Vulnerability — Dynamics 365 Customer ServiceCWE-20 8.1 High2025-04-30
CVE-2025-29817 Microsoft Power Automate Desktop Information Disclosure Vulnerability — Power Automate for DesktopCWE-427 5.7 Medium2025-04-15
CVE-2025-29834 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability — Microsoft Edge (Chromium-based)CWE-125 7.5 High2025-04-12
CVE-2025-32726 Visual Studio Code Elevation of Privilege Vulnerability — Visual Studio CodeCWE-284 6.8 Medium2025-04-12
CVE-2025-29803 Visual Studio Tools for Applications and SQL Server Management Studio Elevation of Privilege Vulnerability — SQL Server Management Studio 20.2CWE-427 7.3 High2025-04-12
CVE-2025-26682 ASP.NET Core and Visual Studio Denial of Service Vulnerability — ASP.NET Core 8.0CWE-770 7.5 High2025-04-08
CVE-2025-24062 Microsoft DWM Core Library Elevation of Privilege Vulnerability — Windows 10 Version 21H2CWE-20 7.8 High2025-04-08
CVE-2025-24060 Microsoft DWM Core Library Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-20 7.8 High2025-04-08
CVE-2025-29811 Windows Mobile Broadband Driver Elevation of Privilege Vulnerability — Windows 11 version 22H2CWE-20 7.8 High2025-04-08
CVE-2025-29819 Windows Admin Center in Azure Portal Information Disclosure Vulnerability — Windows Admin CenterCWE-73 6.2 Medium2025-04-08
CVE-2025-29816 Microsoft Word Security Feature Bypass Vulnerability — Microsoft 365 Apps for EnterpriseCWE-349 7.5 High2025-04-08
CVE-2025-29812 DirectX Graphics Kernel Elevation of Privilege Vulnerability — Windows 11 version 22H2CWE-822 7.8 High2025-04-08
CVE-2025-29810 Active Directory Domain Services Elevation of Privilege Vulnerability — Windows 10 Version 1507CWE-284 7.5 High2025-04-08
CVE-2025-29805 Outlook for Android Information Disclosure Vulnerability — Microsoft Outlook for AndroidCWE-200 7.5 High2025-04-08
CVE-2025-29809 Windows Kerberos Security Feature Bypass Vulnerability — Windows 10 Version 1507CWE-922 7.1 High2025-04-08
CVE-2025-29808 Windows Cryptographic Services Information Disclosure Vulnerability — Windows Server 2022CWE-1240 5.5 Medium2025-04-08
CVE-2025-29804 Visual Studio Elevation of Privilege Vulnerability — Microsoft Visual Studio 2022 version 17.10CWE-284 7.3 High2025-04-08
CVE-2025-29801 Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability — Microsoft AutoUpdate for MacCWE-276 7.8 High2025-04-08
CVE-2025-29802 Visual Studio Elevation of Privilege Vulnerability — Microsoft Visual Studio 2022 version 17.10CWE-427 7.3 High2025-04-08

This page lists every published CVE security advisory associated with Microsoft. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.