Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

microsoft — Vulnerabilities & Security Advisories 8272

Browse all 8272 CVE security advisories affecting microsoft. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by microsoft:Windows 10 Version 1809WindowsWindows 10 Version 1507Windows 10 Version 1803Windows 10 Version 1607Windows Server 2019Microsoft 365 Apps for EnterpriseMicrosoft SharePoint Enterprise Server 2016Microsoft Edge (Chromium-based)Microsoft Office 2019Microsoft EdgeWindows 7Windows 10 Version 2004Windows 10 Version 20H2Windows 11 Version 24H2Windows 10 Version 2004 for 32-bit SystemsAzure Site Recovery VMWare to AzureWindows 10 Version 1703Microsoft SQL Server 2017 (GDR)Windows Server 2022Microsoft OfficeWindows Server 2016Microsoft SharePoint Enterprise ServerInternet Explorer 9Windows 11 version 22H2ChakraCoreInternet Explorer 11Windows Server 2008 R2 Service Pack 1Windows 10 Version 21H2Visual Studio Code
CVE IDTitleCVSSSeverityPublished
CVE-2026-20822 Windows Graphics Component Elevation of Privilege Vulnerability — Windows 10 Version 1607CWE-416 7.8 High2026-01-13
CVE-2026-20820 Windows Common Log File System Driver Elevation of Privilege Vulnerability — Windows 10 Version 1607CWE-122 7.8 High2026-01-13
CVE-2026-20819 Windows Virtualization-Based Security (VBS) Information Disclosure Vulnerability — Windows 11 version 22H3CWE-822 5.5 Medium2026-01-13
CVE-2026-20818 Windows Kernel Information Disclosure Vulnerability — Windows Server 2016CWE-532 6.2 Medium2026-01-13
CVE-2026-20816 Windows Installer Elevation of Privilege Vulnerability — Windows 10 Version 1607CWE-367 7.8 High2026-01-13
CVE-2026-20817 Windows Error Reporting Service Elevation of Privilege Vulnerability — Windows 10 Version 21H2CWE-280 7.8 High2026-01-13
CVE-2026-20815 Capability Access Management Service (camsvc) Elevation of Privilege Vulnerability — Windows 11 Version 24H2CWE-362 7.0 High2026-01-13
CVE-2026-20814 DirectX Graphics Kernel Elevation of Privilege Vulnerability — Windows 10 Version 1607CWE-362 7.0 High2026-01-13
CVE-2026-20812 LDAP Tampering Vulnerability — Windows 10 Version 1607CWE-20 6.5 Medium2026-01-13
CVE-2026-20811 Win32k Elevation of Privilege Vulnerability — Windows 11 version 22H3CWE-843 7.8 High2026-01-13
CVE-2026-20810 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-590 7.8 High2026-01-13
CVE-2026-20809 Windows Kernel Memory Elevation of Privilege Vulnerability — Windows 10 Version 1607CWE-367 7.8 High2026-01-13
CVE-2026-20808 Windows File Explorer Elevation of Privilege Vulnerability — Windows 11 Version 24H2CWE-362 7.0 High2026-01-13
CVE-2026-20805 Desktop Window Manager Information Disclosure Vulnerability — Windows 10 Version 1607CWE-200 5.5 Medium2026-01-13
CVE-2026-20804 Windows Hello Tampering Vulnerability — Windows 10 Version 1607CWE-266 7.7 High2026-01-13
CVE-2026-20965 Windows Admin Center Elevation of Privilege Vulnerability — Windows Admin Center in Azure PortalCWE-347 7.5 High2026-01-13
CVE-2026-20803 Microsoft SQL Server Elevation of Privilege Vulnerability — Microsoft SQL Server 2022 (GDR)CWE-306 7.2 High2026-01-13
CVE-2026-0386 Windows Deployment Services Remote Code Execution Vulnerability — Windows Server 2008 R2 Service Pack 1CWE-284 7.5 High2026-01-13
CVE-2026-21265 Secure Boot Certificate Expiration Security Feature Bypass Vulnerability — Windows 10 Version 1607CWE-1329 6.4 Medium2026-01-13
CVE-2026-20962 Dynamic Root of Trust for Measurement (DRTM) Information Disclosure Vulnerability — Windows 10 Version 1809CWE-908 4.4 Medium2026-01-13
CVE-2025-62224 Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability — Microsoft Edge for AndroidCWE-451 5.5 Medium2026-01-07
CVE-2025-9611 Microsoft Playwright MCP Server < 0.0.40 DNS Rebinding via Missing Origin Header Validation — PlaywrightCWE-749 9.6 -2026-01-07
CVE-2025-64675 Azure Cosmos DB Spoofing Vulnerability — Azure Cosmos DBCWE-79 8.3 High2025-12-18
CVE-2025-64677 Office Out-of-Box Experience Spoofing Vulnerability — Office Out-of-Box ExperienceCWE-79 8.2 High2025-12-18
CVE-2025-64676 Microsoft Purview eDiscovery Remote Code Execution Vulnerability — Microsoft PurviewCWE-35 7.2 High2025-12-18
CVE-2025-65037 Azure Container Apps Remote Code Execution Vulnerability — Azure Container AppsCWE-94 10.0 Critical2025-12-18
CVE-2025-65041 Microsoft Partner Center Elevation of Privilege Vulnerability — Microsoft Partner CenterCWE-285 10.0 Critical2025-12-18
CVE-2025-64663 Custom Question Answering Elevation of Privilege Vulnerability — Azure Cognitive Service for LanguageCWE-918 9.9 Critical2025-12-18
CVE-2025-65046 Microsoft Edge (Chromium-based) Spoofing Vulnerability — Microsoft Edge for AndroidCWE-451 3.1 Low2025-12-18
CVE-2025-64669 Windows Admin Center Elevation of Privilege Vulnerability — Windows Admin CenterCWE-284 7.8 High2025-12-11

This page lists every published CVE security advisory associated with microsoft. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.