HackTesting

Common Vulnerabilities and Exposures (CVE)

CVE-2025-29830

Feb 13, 2026 19:21:18 UTC

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

CVE-2025-29829

Feb 13, 2026 19:21:17 UTC

Use of uninitialized resource in Windows Trusted Runtime Interface Driver allows an authorized attacker to disclose information locally.

CVE-2025-26685

Feb 13, 2026 19:21:17 UTC

Improper authentication in Microsoft Defender for Identity allows an unauthorized attacker to perform spoofing over an adjacent network.

CVE-2025-27488

Feb 13, 2026 19:21:16 UTC

Use of hard-coded credentials in Windows Hardware Lab Kit allows an authorized attacker to elevate privileges locally.

CVE-2025-26677

Feb 13, 2026 19:21:16 UTC

Uncontrolled resource consumption in Remote Desktop Gateway Service allows an unauthorized attacker to deny service over a network.

CVE-2025-32709

Feb 13, 2026 19:21:15 UTC

Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

CVE-2025-33072

Feb 13, 2026 19:21:15 UTC

Improper access control in Azure allows an unauthorized attacker to disclose information over a network.

CVE-2025-21264

Feb 13, 2026 19:21:14 UTC

Files or directories accessible to external parties in Visual Studio Code allows an unauthorized attacker to bypass a security feature locally.

CVE-2025-32706

Feb 13, 2026 19:21:14 UTC

Improper input validation in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

CVE-2025-32703

Feb 13, 2026 19:21:13 UTC

Insufficient granularity of access control in Visual Studio allows an authorized attacker to disclose information locally.

CVE-2025-32701

Feb 13, 2026 19:21:12 UTC

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

CVE-2025-30400

Feb 13, 2026 19:21:12 UTC

Use after free in Windows DWM allows an authorized attacker to elevate privileges locally.

CVE-2025-30394

Feb 13, 2026 19:21:11 UTC

Sensitive data storage in improperly locked memory in Remote Desktop Gateway Service allows an unauthorized attacker to deny service over a network.

CVE-2025-29826

Feb 13, 2026 19:21:11 UTC

Improper handling of insufficient permissions or privileges in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.

CVE-2025-30393

Feb 13, 2026 19:21:10 UTC

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

Page: 93