HackTesting

Common Vulnerabilities and Exposures (CVE)

CVE-2025-59255

Feb 13, 2026 23:11:59 UTC

Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVE-2025-59254

Feb 13, 2026 23:11:58 UTC

Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVE-2025-59250

Feb 13, 2026 23:11:58 UTC

Improper input validation in JDBC Driver for SQL Server allows an unauthorized attacker to perform spoofing over a network.

CVE-2025-59249

Feb 13, 2026 23:11:57 UTC

Weak authentication in Microsoft Exchange Server allows an authorized attacker to elevate privileges over a network.

CVE-2025-59243

Feb 13, 2026 23:11:57 UTC

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVE-2025-49708

Feb 13, 2026 23:11:56 UTC

Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges over a network.

CVE-2025-59242

Feb 13, 2026 23:11:56 UTC

Heap-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

CVE-2025-59237

Feb 13, 2026 23:11:55 UTC

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

CVE-2025-59236

Feb 13, 2026 23:11:55 UTC

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVE-2025-59235

Feb 13, 2026 23:11:54 UTC

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.

CVE-2025-59234

Feb 13, 2026 23:11:53 UTC

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2025-59233

Feb 13, 2026 23:11:52 UTC

Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVE-2025-59231

Feb 13, 2026 23:11:52 UTC

Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVE-2025-59228

Feb 13, 2026 23:11:51 UTC

Improper input validation in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

CVE-2025-59211

Feb 13, 2026 23:11:50 UTC

Exposure of sensitive information to an unauthorized actor in Windows Push Notification Core allows an authorized attacker to disclose information locally.

Page: 137