Security Vulnerabilities - CVEs Published In July 2025
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
CVSS Score
7.8
EPSS Score
0.007
Published
2025-07-08
Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over an adjacent network.
CVSS Score
8.0
EPSS Score
0.007
Published
2025-07-08
Double free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.006
Published
2025-07-08
Null pointer dereference in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.009
Published
2025-07-08
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVSS Score
8.4
EPSS Score
0.008
Published
2025-07-08
Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally.
CVSS Score
8.4
EPSS Score
0.008
Published
2025-07-08
Null pointer dereference in Windows TCP/IP allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.009
Published
2025-07-08
Out-of-bounds read in Microsoft Input Method Editor (IME) allows an authorized attacker to elevate privileges locally.
CVSS Score
8.8
EPSS Score
0.005
Published
2025-07-08
Double free in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
CVSS Score
8.8
EPSS Score
0.006
Published
2025-07-08
Integer overflow or wraparound in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.009
Published
2025-07-08