mscve - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 5.5	MS:CVE-2022-49552	bpf: Fix combination of jit blinding and pointers to bpf subprogs._MS:CVE-2022-49552 {“lastseen”:”2025-10-24T06:55:31″,”description”:””,”published”:”2025-10-24T01:01:...	N/A	N/A	Oct 24, 2025	MSCVE
MEDIUM 5.5	MS:CVE-2022-49562	KVM: x86: Use __try_cmpxchg_user() to update guest PTE A/D bits_MS:CVE-2022-49562 {“lastseen”:”2025-10-24T06:55:31″,”description”:””,”published”:”2025-10-24T01:01:...	N/A	N/A	Oct 24, 2025	MSCVE
MEDIUM 5.5	MS:CVE-2022-49610	KVM: VMX: Prevent RSB underflow before vmenter_MS:CVE-2022-49610 {“lastseen”:”2025-10-24T06:55:31″,”description”:””,”published”:”2025-10-24T01:02:...	N/A	N/A	Oct 24, 2025	MSCVE
HIGH 7.8	MS:CVE-2022-49635	drm/i915/selftests: fix subtraction overflow bug_MS:CVE-2022-49635 {“lastseen”:”2025-10-24T06:55:31″,”description”:””,”published”:”2025-10-24T01:02:...	N/A	N/A	Oct 24, 2025	MSCVE
MEDIUM 5.9	MS:CVE-2025-62813	LZ4 through 1.10.0 allows attackers to cause a denial of service (application crash) or possibly have unspecified other impact when the application processes untrusted LZ4 frames. For example, LZ4F_createCDict_advanced in lib/lz4frame.c mishandles NULL checks._MS:CVE-2025-62813 {“lastseen”:”2025-10-24T06:55:31″,”description”:””,”published”:”2025-10-24T01:02:...	N/A	N/A	Oct 24, 2025	MSCVE
CRITICAL 9.9	MS:CVE-2025-59503	Azure Compute Resource Provider Elevation of Privilege Vulnerability_MS:CVE-2025-59503 Server-side request forgery (ssrf) in Azure Compute Gallery allows an authorized attacker to elevate privileges over a network.	N/A	N/A	Oct 23, 2025	MSCVE
HIGH 7.3	MS:CVE-2025-59273	Azure Event Grid System Elevation of Privilege Vulnerability_MS:CVE-2025-59273 Improper access control in Azure Event Grid allows an unauthorized attacker to elevate privileges over a network.	N/A	N/A	Oct 23, 2025	MSCVE
HIGH 7.7	MS:CVE-2025-59500	Azure Notification Service Elevation of Privilege Vulnerability_MS:CVE-2025-59500 Improper access control in Azure Notification Service allows an authorized attacker to elevate privileges over a network.	N/A	N/A	Oct 23, 2025	MSCVE
NONE	MS:CVE-2025-40013	ASoC: qcom: audioreach: fix potential null pointer dereference_MS:CVE-2025-40013 {“lastseen”:”2025-10-22T22:55:07″,”description”:””,”published”:”2025-10-22T01:01:...	N/A	N/A	Oct 22, 2025	MSCVE
NONE	MS:CVE-2025-40016	media: uvcvideo: Mark invalid entities with id UVC_INVALID_ENTITY_ID_MS:CVE-2025-40016 {“lastseen”:”2025-10-22T22:55:07″,”description”:””,”published”:”2025-10-22T01:01:...	N/A	N/A	Oct 22, 2025	MSCVE