HackTesting

Common Vulnerabilities and Exposures (CVE)

CVE-2025-21416

Feb 13, 2026 19:33:43 UTC

Missing authorization in Azure Virtual Desktop allows an authorized attacker to elevate privileges over a network.

CVE-2025-30390

Feb 13, 2026 19:33:42 UTC

Improper authorization in Azure allows an authorized attacker to elevate privileges over a network.

CVE-2025-33074

Feb 13, 2026 19:33:42 UTC

Improper verification of cryptographic signature in Microsoft Azure Functions allows an authorized attacker to execute code over a network.

CVE-2025-30389

Feb 13, 2026 19:33:41 UTC

Improper authorization in Azure Bot Framework SDK allows an unauthorized attacker to elevate privileges over a network.

CVE-2025-30391

Feb 13, 2026 19:33:41 UTC

Improper input validation in Microsoft Dynamics allows an unauthorized attacker to disclose information over a network.

CVE-2025-29834

Feb 13, 2026 19:33:39 UTC

Out-of-bounds read in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

CVE-2025-26682

Feb 13, 2026 19:33:38 UTC

Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network.

CVE-2025-24062

Feb 13, 2026 19:33:38 UTC

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVE-2025-24060

Feb 13, 2026 19:33:37 UTC

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVE-2025-32726

Feb 13, 2026 19:33:36 UTC

Improper access control in Visual Studio Code allows an authorized attacker to elevate privileges locally.

CVE-2025-29811

Feb 13, 2026 19:33:36 UTC

Improper input validation in Windows Mobile Broadband allows an authorized attacker to elevate privileges locally.

CVE-2025-29819

Feb 13, 2026 19:33:35 UTC

External control of file name or path in Azure Portal Windows Admin Center allows an unauthorized attacker to disclose information locally.

CVE-2025-29815

Feb 13, 2026 19:33:35 UTC

Use after free in Microsoft Edge (Chromium-based) allows an authorized attacker to execute code over a network.

CVE-2025-29816

Feb 13, 2026 19:33:34 UTC

Improper input validation in Microsoft Office Word allows an unauthorized attacker to bypass a security feature over a network.

CVE-2025-29812

Feb 13, 2026 19:33:33 UTC

Untrusted pointer dereference in Windows Kernel Memory allows an authorized attacker to elevate privileges locally.

Page: 68