Export limit exceeded: 10702 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Search Results (10702 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2023-36028 1 Microsoft 11 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 8 more 2025-10-09 9.8 Critical
Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability
CVE-2023-36022 1 Microsoft 1 Edge Chromium 2025-10-09 6.6 Medium
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
CVE-2023-36045 1 Microsoft 3 365 Apps, Office, Office Long Term Servicing Channel 2025-10-08 7.8 High
Microsoft Office Graphics Remote Code Execution Vulnerability
CVE-2023-36041 1 Microsoft 4 365 Apps, Excel, Office and 1 more 2025-10-08 7.8 High
Microsoft Excel Remote Code Execution Vulnerability
CVE-2023-36393 1 Microsoft 13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more 2025-10-08 7.8 High
Windows User Interface Application Core Remote Code Execution Vulnerability
CVE-2023-36396 1 Microsoft 2 Windows 11 22h2, Windows 11 23h2 2025-10-08 7.8 High
Windows Compressed Folder Remote Code Execution Vulnerability
CVE-2023-36397 1 Microsoft 13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more 2025-10-08 9.8 Critical
Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability
CVE-2023-36401 1 Microsoft 13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more 2025-10-08 7.2 High
Microsoft Remote Registry Service Remote Code Execution Vulnerability
CVE-2023-36402 1 Microsoft 13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more 2025-10-08 8.8 High
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2023-36008 1 Microsoft 1 Edge Chromium 2025-10-08 6.6 Medium
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
CVE-2023-36034 1 Microsoft 1 Edge Chromium 2025-10-08 7.3 High
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
CVE-2023-36437 1 Microsoft 1 Azure Pipelines Agent 2025-10-08 8.8 High
Azure DevOps Server Remote Code Execution Vulnerability
CVE-2023-38151 1 Microsoft 2 Host Integration Server, Ole Db Provider 2025-10-08 8.8 High
Microsoft Host Integration Server 2020 Remote Code Execution Vulnerability
CVE-2023-36423 1 Microsoft 14 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 11 more 2025-10-08 8.8 High
Microsoft Remote Registry Service Remote Code Execution Vulnerability
CVE-2023-36425 1 Microsoft 14 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 11 more 2025-10-08 8 High
Windows Distributed File System (DFS) Remote Code Execution Vulnerability
CVE-2023-36439 1 Microsoft 1 Exchange Server 2025-10-08 8 High
Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2023-38177 1 Microsoft 2 Sharepoint Enterprise Server, Sharepoint Server 2025-10-08 6.1 Medium
Microsoft SharePoint Server Remote Code Execution Vulnerability
CVE-2025-59334 1 Mohammadzain2008 1 Linkr 2025-10-08 9.7 Critical
Linkr is a lightweight file delivery system that downloads files from a webserver. Linkr versions through 2.0.0 do not verify the integrity or authenticity of .linkr manifest files before using their contents, allowing a tampered manifest to inject arbitrary file entries into a package distribution. An attacker can modify a generated .linkr manifest (for example by adding a new entry with a malicious URL) and when a user runs the extract command the client downloads the attacker-supplied file without verification. This enables arbitrary file injection and creates a potential path to remote code execution if a downloaded malicious binary or script is later executed. Version 2.0.1 adds a manifest integrity check that compares the checksum of the original author-created manifest to the one being extracted and aborts on mismatch, warning if no original manifest is hosted. Users should update to 2.0.1 or later. As a workaround prior to updating, use only trusted .linkr manifests, manually verify manifest integrity, and host manifests on trusted servers.
CVE-2025-59304 1 Swetrix 1 Swetrix 2025-10-08 9.8 Critical
A directory traversal issue in Swetrix Web Analytics API 3.1.1 before 7d8b972 allows a remote attacker to achieve Remote Code Execution via a crafted HTTP request.
CVE-2025-51482 1 Letta 1 Letta 2025-10-07 8.8 High
Remote Code Execution in letta.server.rest_api.routers.v1.tools.run_tool_from_source in letta-ai Letta 0.7.12 allows remote attackers to execute arbitrary Python code and system commands via crafted payloads to the /v1/tools/run endpoint, bypassing intended sandbox restrictions.