HackTesting

Common Vulnerabilities and Exposures (CVE)

CVE-2025-59207

Feb 13, 2026 23:11:50 UTC

Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally.

CVE-2025-59206

Feb 13, 2026 23:11:49 UTC

Windows Resilient File System (ReFS) Deduplication Service Elevation of Privilege Vulnerability

CVE-2025-59204

Feb 13, 2026 23:11:49 UTC

Use of uninitialized resource in Windows Management Services allows an authorized attacker to disclose information locally.

CVE-2025-59202

Feb 13, 2026 23:11:48 UTC

Use after free in Windows Remote Desktop Services allows an authorized attacker to elevate privileges locally.

CVE-2025-59201

Feb 13, 2026 23:11:48 UTC

Improper access control in Network Connection Status Indicator (NCSI) allows an authorized attacker to elevate privileges locally.

CVE-2025-59200

Feb 13, 2026 23:11:47 UTC

Concurrent execution using shared resource with improper synchronization ('race condition') in Data Sharing Service Client allows an unauthorized attacker to perform spoofing locally.

CVE-2025-59199

Feb 13, 2026 23:11:46 UTC

Improper access control in Software Protection Platform (SPP) allows an authorized attacker to elevate privileges locally.

CVE-2025-59196

Feb 13, 2026 23:11:46 UTC

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SSDP Service allows an authorized attacker to elevate privileges locally.

CVE-2025-59195

Feb 13, 2026 23:11:45 UTC

Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Graphics Component allows an authorized attacker to deny service locally.

CVE-2025-59186

Feb 13, 2026 23:11:45 UTC

Exposure of sensitive information to an unauthorized actor in Windows Kernel allows an authorized attacker to disclose information locally.

CVE-2025-59185

Feb 13, 2026 23:11:44 UTC

External control of file name or path in Windows Core Shell allows an unauthorized attacker to perform spoofing over a network.

CVE-2025-58735

Feb 13, 2026 23:11:43 UTC

Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.

CVE-2025-58732

Feb 13, 2026 23:11:43 UTC

Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.

CVE-2025-58728

Feb 13, 2026 23:11:42 UTC

Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.

CVE-2025-58722

Feb 13, 2026 23:11:42 UTC

Heap-based buffer overflow in Windows DWM allows an authorized attacker to elevate privileges locally.

Page: 138