HackTesting

Common Vulnerabilities and Exposures (CVE)

CVE-2025-64678

Feb 13, 2026 17:23:28 UTC

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

CVE-2025-64672

Feb 13, 2026 17:23:28 UTC

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.

CVE-2025-64671

Feb 13, 2026 17:23:27 UTC

Improper neutralization of special elements used in a command ('command injection') in Copilot allows an unauthorized attacker to execute code locally.

CVE-2025-64661

Feb 13, 2026 17:23:27 UTC

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Shell allows an authorized attacker to elevate privileges locally.

CVE-2025-62565

Feb 13, 2026 17:23:26 UTC

Use after free in Windows Shell allows an authorized attacker to elevate privileges locally.

CVE-2025-62570

Feb 13, 2026 17:23:26 UTC

Improper access control in Windows Camera Frame Server Monitor allows an authorized attacker to disclose information locally.

CVE-2025-62569

Feb 13, 2026 17:23:25 UTC

Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.

CVE-2025-62567

Feb 13, 2026 17:23:25 UTC

Integer underflow (wrap or wraparound) in Windows Hyper-V allows an authorized attacker to deny service over a network.

CVE-2025-62560

Feb 13, 2026 17:23:24 UTC

Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVE-2025-62559

Feb 13, 2026 17:23:24 UTC

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

CVE-2025-62558

Feb 13, 2026 17:23:23 UTC

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

CVE-2025-62557

Feb 13, 2026 17:23:22 UTC

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2025-62556

Feb 13, 2026 17:23:22 UTC

Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVE-2025-62555

Feb 13, 2026 17:23:21 UTC

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

CVE-2025-62554

Feb 13, 2026 17:23:21 UTC

Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.

Page: 2