Security Vulnerabilities - CVEs Published In July 2025
Use after free in Windows Notification allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.006
Published
2025-07-08
Use after free in Windows Notification allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.006
Published
2025-07-08
Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.
CVSS Score
7.0
EPSS Score
0.002
Published
2025-07-08
Heap-based buffer overflow in SQL Server allows an authorized attacker to execute code over a network.
CVSS Score
8.5
EPSS Score
0.004
Published
2025-07-08
Use of uninitialized resource in SQL Server allows an unauthorized attacker to disclose information over a network.
CVSS Score
7.5
EPSS Score
0.235
Published
2025-07-08
Improper input validation in SQL Server allows an unauthorized attacker to disclose information over a network.
CVSS Score
7.5
EPSS Score
0.089
Published
2025-07-08
Heap-based buffer overflow in Windows Fast FAT Driver allows an unauthorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.007
Published
2025-07-08
Uncontrolled resource consumption in Windows Print Spooler Components allows an authorized attacker to deny service over an adjacent network.
CVSS Score
5.7
EPSS Score
0.016
Published
2025-07-08
Heap-based buffer overflow in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
CVSS Score
7.8
EPSS Score
0.007
Published
2025-07-08
CVE-2025-49706
Improper authentication in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network.
Known exploited
CVSS Score
6.5
EPSS Score
0.75
Published
2025-07-08