Syntax: kev:true severity:critical epss:>0.95 vendor:cisco patch:false
Filters
Severity
Exploitation
Data Source
Data Quality
Vendor
CWE — Weakness Type
Clear all
Top 20 matches Showing top matches — use filters or a more specific query to narrow
11 HIGH9 MEDIUM ⚡ 2 KEV
CVE-2025-25007
MEDIUM CVSS 5.3
Find Similar
Improper validation of syntactic correctness of input in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network.
microsoft
NVD RRF 0.016
CVE-2025-59248
HIGH CVSS 7.5
Find Similar
Improper input validation in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network.
microsoft
NVD RRF 0.016
CVE-2025-25005
MEDIUM CVSS 6.5
Find Similar
Improper input validation in Microsoft Exchange Server allows an authorized attacker to perform tampering over a network.
microsoft
NVD RRF 0.016
CVE-2025-64666
HIGH CVSS 7.5
Find Similar
Improper input validation in Microsoft Exchange Server allows an authorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.016
CVE-2025-25006
MEDIUM CVSS 5.3
Find Similar
Improper handling of additional special element in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network.
microsoft
NVD RRF 0.015
CVE-2026-21527
MEDIUM CVSS 6.5
Find Similar
User interface (ui) misrepresentation of critical information in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network.
microsoft
NVD RRF 0.015
CVE-2025-64667
MEDIUM CVSS 5.3
Find Similar
User interface (ui) misrepresentation of critical information in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network.
microsoft
NVD RRF 0.015
CVE-2026-32201
MEDIUM CVSS 6.5 KEV
Find Similar
Improper input validation in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network.
microsoft
NVD RRF 0.015
CVE-2026-26106
HIGH CVSS 8.8
Find Similar
Improper input validation in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.
microsoft
NVD RRF 0.014
CVE-2025-59228
HIGH CVSS 8.8
Find Similar
Improper input validation in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.
microsoft
NVD RRF 0.014
CVE-2026-26154
HIGH CVSS 7.5
Find Similar
Improper input validation in Windows Server Update Service allows an unauthorized attacker to perform tampering over a network.
microsoft
NVD RRF 0.014
CVE-2026-45583
HIGH CVSS 8.1
Find Similar
Improper control of generation of code ('code injection') in Microsoft Exchange Server allows an unauthorized attacker to execute code over a network.
microsoft
NVD RRF 0.014
CVE-2025-53782
HIGH CVSS 7.8
Find Similar
Incorrect implementation of authentication algorithm in Microsoft Exchange Server allows an unauthorized attacker to elevate privileges locally.
microsoft
NVD RRF 0.013
CVE-2026-26143
HIGH CVSS 7.8
Find Similar
Improper input validation in Microsoft PowerShell allows an unauthorized attacker to bypass a security feature locally.
microsoft
NVD RRF 0.013
CVE-2025-30391
HIGH CVSS 7.5
Find Similar
Improper input validation in Microsoft Dynamics allows an unauthorized attacker to disclose information over a network.
microsoft
NVD RRF 0.013
CVE-2025-53771
MEDIUM CVSS 6.5
Find Similar
Improper authentication in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network.
microsoft
NVD RRF 0.013
CVE-2025-49706
MEDIUM CVSS 6.5 KEV
Find Similar
Improper authentication in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network.
microsoft
NVD RRF 0.013
Page 1+ Next →