HackTesting

Common Vulnerabilities and Exposures (CVE)

CVE-2025-29800

Feb 13, 2026 19:33:29 UTC

Improper privilege management in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.

CVE-2025-29803

Feb 13, 2026 19:33:28 UTC

Uncontrolled search path element in Visual Studio Tools for Applications and SQL Server Management Studio allows an authorized attacker to elevate privileges locally.

CVE-2025-27739

Feb 13, 2026 19:33:28 UTC

Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally.

CVE-2025-27738

Feb 13, 2026 19:33:27 UTC

Improper access control in Windows Resilient File System (ReFS) allows an authorized attacker to disclose information over a network.

CVE-2025-27737

Feb 13, 2026 19:33:27 UTC

Improper input validation in Windows Security Zone Mapping allows an unauthorized attacker to bypass a security feature locally.

CVE-2025-27736

Feb 13, 2026 19:33:26 UTC

Exposure of sensitive information to an unauthorized actor in Windows Power Dependency Coordinator allows an authorized attacker to disclose information locally.

CVE-2025-27735

Feb 13, 2026 19:33:25 UTC

Insufficient verification of data authenticity in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to bypass a security feature locally.

CVE-2025-27733

Feb 13, 2026 19:33:25 UTC

Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.

CVE-2025-27732

Feb 13, 2026 19:33:24 UTC

Sensitive data storage in improperly locked memory in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

CVE-2025-27730

Feb 13, 2026 19:33:23 UTC

Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.

CVE-2025-27731

Feb 13, 2026 19:33:23 UTC

Improper input validation in OpenSSH for Windows allows an authorized attacker to elevate privileges locally.

CVE-2025-27728

Feb 13, 2026 19:33:22 UTC

Out-of-bounds read in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.

CVE-2025-27729

Feb 13, 2026 19:33:22 UTC

Use after free in Windows Shell allows an unauthorized attacker to execute code locally.

CVE-2025-27727

Feb 13, 2026 19:33:21 UTC

Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to elevate privileges locally.

CVE-2025-27490

Feb 13, 2026 19:33:21 UTC

Heap-based buffer overflow in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.

Page: 75