HackTesting

Common Vulnerabilities and Exposures (CVE)

CVE-2025-27732

Feb 13, 2026 19:33:24 UTC

Sensitive data storage in improperly locked memory in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

CVE-2025-27730

Feb 13, 2026 19:33:23 UTC

Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.

CVE-2025-27731

Feb 13, 2026 19:33:23 UTC

Improper input validation in OpenSSH for Windows allows an authorized attacker to elevate privileges locally.

CVE-2025-27728

Feb 13, 2026 19:33:22 UTC

Out-of-bounds read in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.

CVE-2025-27729

Feb 13, 2026 19:33:22 UTC

Use after free in Windows Shell allows an unauthorized attacker to execute code locally.

CVE-2025-27727

Feb 13, 2026 19:33:21 UTC

Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to elevate privileges locally.

CVE-2025-27490

Feb 13, 2026 19:33:21 UTC

Heap-based buffer overflow in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.

CVE-2025-27491

Feb 13, 2026 19:33:20 UTC

Use after free in Windows Hyper-V allows an authorized attacker to execute code over a network.

CVE-2025-27492

Feb 13, 2026 19:33:19 UTC

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Secure Channel allows an authorized attacker to elevate privileges locally.

CVE-2025-27486

Feb 13, 2026 19:33:19 UTC

Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.

CVE-2022-45188

Feb 13, 2026 19:33:18 UTC

Netatalk through 3.1.13 has an afp_getappl heap-based buffer overflow resulting in code execution via a crafted .appl file. This provides remote root access on some platforms such as FreeBSD (used for TrueNAS).

CVE-2025-27489

Feb 13, 2026 19:33:18 UTC

Improper input validation in Azure Local allows an authorized attacker to elevate privileges locally.

CVE-2025-27487

Feb 13, 2026 19:33:17 UTC

Heap-based buffer overflow in Remote Desktop Client allows an authorized attacker to execute code over a network.

CVE-2025-27483

Feb 13, 2026 19:33:17 UTC

Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.

CVE-2025-27482

Feb 13, 2026 19:33:16 UTC

Sensitive data storage in improperly locked memory in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.

Page: 70