HackTesting

Common Vulnerabilities and Exposures (CVE)

CVE-2025-21222

Feb 13, 2026 19:32:57 UTC

Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.

CVE-2025-21221

Feb 13, 2026 19:32:56 UTC

Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.

CVE-2025-21204

Feb 13, 2026 19:32:55 UTC

Improper link resolution before file access ('link following') in Windows Update Stack allows an authorized attacker to elevate privileges locally.

CVE-2025-21203

Feb 13, 2026 19:32:55 UTC

Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

CVE-2025-21205

Feb 13, 2026 19:32:54 UTC

Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.

CVE-2025-21191

Feb 13, 2026 19:32:54 UTC

Time-of-check time-of-use (toctou) race condition in Windows Local Security Authority (LSA) allows an authorized attacker to elevate privileges locally.

CVE-2025-21197

Feb 13, 2026 19:32:53 UTC

Improper access control in Windows NTFS allows an authorized attacker to disclose file path information under a folder where the attacker doesn't have permission to list content.

CVE-2025-21174

Feb 13, 2026 19:32:53 UTC

Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.

CVE-2025-29817

Feb 13, 2026 19:32:52 UTC

Uncontrolled search path element in Power Automate allows an authorized attacker to disclose information over a network.

CVE-2025-24073

Feb 13, 2026 19:32:51 UTC

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVE-2025-24074

Feb 13, 2026 19:32:51 UTC

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVE-2025-29824

Feb 13, 2026 19:32:50 UTC

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

CVE-2025-29823

Feb 13, 2026 19:32:50 UTC

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVE-2025-29822

Feb 13, 2026 19:32:49 UTC

Incomplete list of disallowed inputs in Microsoft Office OneNote allows an unauthorized attacker to bypass a security feature locally.

CVE-2025-29820

Feb 13, 2026 19:32:48 UTC

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

Page: 79