HackTesting

Common Vulnerabilities and Exposures (CVE)

CVE-2025-60706

Feb 13, 2026 20:45:48 UTC

Out-of-bounds read in Windows Hyper-V allows an authorized attacker to disclose information locally.

CVE-2025-60705

Feb 13, 2026 20:45:47 UTC

Improper access control in Windows Client-Side Caching (CSC) Service allows an authorized attacker to elevate privileges locally.

CVE-2025-60704

Feb 13, 2026 20:45:46 UTC

Missing cryptographic step in Windows Kerberos allows an unauthorized attacker to elevate privileges over a network.

CVE-2025-60703

Feb 13, 2026 20:45:46 UTC

Untrusted pointer dereference in Windows Remote Desktop allows an authorized attacker to elevate privileges locally.

CVE-2025-59513

Feb 13, 2026 20:45:45 UTC

Out-of-bounds read in Windows Bluetooth RFCOM Protocol Driver allows an authorized attacker to disclose information locally.

CVE-2025-59512

Feb 13, 2026 20:45:45 UTC

Improper access control in Customer Experience Improvement Program (CEIP) allows an authorized attacker to elevate privileges locally.

CVE-2025-59511

Feb 13, 2026 20:45:44 UTC

External control of file name or path in Windows WLAN Service allows an authorized attacker to elevate privileges locally.

CVE-2025-59510

Feb 13, 2026 20:45:44 UTC

Improper link resolution before file access ('link following') in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to deny service locally.

CVE-2025-59509

Feb 13, 2026 20:45:43 UTC

Insertion of sensitive information into sent data in Windows Speech allows an authorized attacker to disclose information locally.

CVE-2025-59508

Feb 13, 2026 20:45:42 UTC

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Speech allows an authorized attacker to elevate privileges locally.

CVE-2025-59507

Feb 13, 2026 20:45:42 UTC

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Speech allows an authorized attacker to elevate privileges locally.

CVE-2025-59506

Feb 13, 2026 20:45:41 UTC

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows DirectX allows an authorized attacker to elevate privileges locally.

CVE-2025-59505

Feb 13, 2026 20:45:41 UTC

Double free in Windows Smart Card allows an authorized attacker to elevate privileges locally.

CVE-2025-59504

Feb 13, 2026 20:45:40 UTC

Heap-based buffer overflow in Azure Monitor Agent allows an unauthorized attacker to execute code locally.

CVE-2025-64656

Feb 13, 2026 20:45:39 UTC

Out-of-bounds read in Application Gateway allows an unauthorized attacker to elevate privileges over a network.

Page: 150