Security Vulnerabilities
Improper access control in Windows Camera Frame Server Monitor allows an authorized attacker to disclose information locally.
CVSS Score
7.1
EPSS Score
0.0
Published
2025-12-09
Improper input validation in Windows Installer allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.001
Published
2025-12-09
Out-of-bounds read in Application Information Services allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-12-09
Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally.
CVSS Score
7.0
EPSS Score
0.0
Published
2025-12-09
An insufficient session expiration vulnerability [CWE-613] in Fortinet FortiOS 7.4.0, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions allows attacker to maintain access to network resources via an active SSLVPN session not terminated after a user's password change under particular conditions outside of the attacker's control
CVSS Score
5.6
EPSS Score
0.001
Published
2025-12-09
Use after free in Microsoft Office Outlook allows an unauthorized attacker to execute code locally.
CVSS Score
7.8
EPSS Score
0.001
Published
2025-12-09
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVSS Score
7.8
EPSS Score
0.001
Published
2025-12-09
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVSS Score
7.8
EPSS Score
0.001
Published
2025-12-09
Use after free in Windows Shell allows an authorized attacker to elevate privileges locally.
CVSS Score
7.3
EPSS Score
0.001
Published
2025-12-09
Integer underflow (wrap or wraparound) in Windows Hyper-V allows an authorized attacker to deny service over a network.
CVSS Score
5.3
EPSS Score
0.001
Published
2025-12-09