Analyst command view

MSRC Driver CVE Board

Latest-state board for filtered MSRC CVEs from 2020-01-01 to today, tuned for fast triage across module, CWE, release window, exploitation signal, and acknowledgement context.

Live snapshot

Last Sync

2026-05-20T07:39:30Z

Freshness

1 day(s) ago

Refresh Policy

24h baseline + release watch

Storage

Latest snapshot only

Rows In View

4933

Current result set after filter and search.

Exploited Flagged

4189

Rows with a non-empty exploitation signal.

Distinct CWE

162

Unique weakness classes in this view.

Modules

1528

Unique inferred driver or component labels.

Module

CWE

Rows

Sort

Actions

Reset

Top CWE

162 classes

Unspecified2109 CWE-416: Use After Free443 CWE-122: Heap-based Buffer Overflow354 CWE-125: Out-of-bounds Read269 CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')147 CWE-20: Improper Input Validation142 CWE-190: Integer Overflow or Wraparound127 CWE-476: NULL Pointer Dereference126

Top Modules

1528 modules

Windows Kernel220 Windows Routing and Remote Access Service (RRAS)111 Windows Hyper-V101 Win32k100 Windows Graphics Component89 Windows Print Spooler69 Remote Procedure Call Runtime67 Microsoft Message Queuing (MSMQ)63

Release Month

August 2025

50 CVE | last update 1 day(s) ago

Release 2025-08-12 Patch Tuesday Count 50

CVE	Module	CWE	Title Advisory text and compact technical context	Release	Exploited	Acknowledgement
CVE-2025-50157	Windows Routing and Remote Access Service (RRAS) Exploitation Unlikely	CWE-908: Use of Uninitialized Resource	Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability CVSS vector: AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C	2025-08-12	No	Reported By Anonymous
CVE-2025-50156	Windows Routing and Remote Access Service (RRAS) Exploitation Less Likely	CWE-908: Use of Uninitialized Resource	Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability CVSS vector: AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C	2025-08-12	No	Reported By Anonymous
CVE-2025-53726	Windows Push Notifications Apps Exploitation Unlikely	CWE-843: Access of Resource Using Incompatible Type ('Type Confusion')	Windows Push Notifications Apps Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By anonymous
CVE-2025-53725	Windows Push Notifications Apps Exploitation Unlikely	CWE-843: Access of Resource Using Incompatible Type ('Type Confusion')	Windows Push Notifications Apps Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Anonymous
CVE-2025-53724	Windows Push Notifications Apps Exploitation Unlikely	CWE-843: Access of Resource Using Incompatible Type ('Type Confusion')	Windows Push Notifications Apps Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Anonymous
CVE-2025-50155	Windows Push Notifications Apps Exploitation Unlikely	CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') CWE-122: Heap-based Buffer Overflow	Windows Push Notifications Apps Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Zhiniang Peng with HUST & R4nger with CyberKunLun
CVE-2025-50168	Win32k Exploitation More Likely	CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') CWE-122: Heap-based Buffer Overflow	Win32k Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Hyeonjin Choi (@d4m0n_8) of Out Of Bounds with Trend Zero Day Initiative
CVE-2025-53145	Microsoft Message Queuing (MSMQ) Exploitation Less Likely	CWE-843: Access of Resource Using Incompatible Type ('Type Confusion')	Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability CVSS vector: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By k0shl with Kunlun Lab
CVE-2025-53144	Microsoft Message Queuing (MSMQ) Exploitation Less Likely	CWE-843: Access of Resource Using Incompatible Type ('Type Confusion')	Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability CVSS vector: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By k0shl with Kunlun Lab
CVE-2025-53143	Microsoft Message Queuing (MSMQ) Exploitation Less Likely	CWE-843: Access of Resource Using Incompatible Type ('Type Confusion')	Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability CVSS vector: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By k0shl with Kunlun Lab
CVE-2025-50176	DirectX Graphics Kernel Exploitation Less Likely	CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') CWE-122: Heap-based Buffer Overflow	DirectX Graphics Kernel Remote Code Execution Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By b2ahex cyanbamboo
CVE-2025-50165	Windows Graphics Component Exploitation Less Likely	CWE-822: Untrusted Pointer Dereference CWE-908: Use of Uninitialized Resource	Windows Graphics Component Remote Code Execution Vulnerability CVSS vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By 4n0nym4u5 with Zscaler
CVE-2025-49751	Windows Hyper-V Exploitation Less Likely	CWE-820: Missing Synchronization	Windows Hyper-V Denial of Service Vulnerability CVSS vector: AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By HongZhenhao with TianGong Team of Legendsec at Qi'anxin Group
CVE-2025-50172	DirectX Graphics Kernel Exploitation Less Likely	CWE-770: Allocation of Resources Without Limits or Throttling	DirectX Graphics Kernel Denial of Service Vulnerability CVSS vector: AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By cyanbamboo and b2ahex
CVE-2025-53772	Web Deploy Exploitation Less Likely	CWE-502: Deserialization of Untrusted Data	Web Deploy Remote Code Execution Vulnerability CVSS vector: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Batuhan Er with HawkTrace
CVE-2025-53716	Windows Local Security Authority Subsystem Service (LSASS) Exploitation Less Likely	CWE-476: NULL Pointer Dereference	Windows Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability CVSS vector: AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Anonymous
CVE-2025-53154	Windows Ancillary Function Driver for WinSock Exploitation Less Likely	CWE-476: NULL Pointer Dereference	Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By dungnm with Viettel Cyber Security
CVE-2025-53141	Windows Ancillary Function Driver for WinSock Exploitation Less Likely	CWE-476: NULL Pointer Dereference	Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Marat Gayanov with Positive Technologies
CVE-2025-53133	Windows PrintWorkflowUserSvc Exploitation Less Likely	CWE-416: Use After Free	Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Jongseong Kim (nevul37) with Ajou University, and working at ENKI WhiteHat Dongjun Kim (smlijun) with Ajou University, and working at ENKI WhiteHat Seongheun Hong (seongheunh) with Ajou University Pwnforr777 Hwiwon Lee (hwiwonl), SEC-agent team Taewoo (Tae_ω02)
CVE-2025-53140	Windows Kernel Transaction Manager Exploitation Less Likely	CWE-416: Use After Free	Windows Kernel Transaction Manager Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Anonymous
CVE-2025-53151	Windows Kernel Exploitation Less Likely	CWE-416: Use After Free	Windows Kernel Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By hazard
CVE-2025-49761	Windows Kernel Exploitation Unlikely	CWE-416: Use After Free	Windows Kernel Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Anonymous
CVE-2025-53721	Windows Connected Devices Platform Service Exploitation Less Likely	CWE-416: Use After Free	Windows Connected Devices Platform Service Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Zhang WangJunJie, He YiSheng with Hillstone Network Security Research Institute
CVE-2025-53718	Windows Ancillary Function Driver for WinSock Exploitation Less Likely	CWE-416: Use After Free	Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By dungnm with Viettel Cyber Security
CVE-2025-53147	Windows Ancillary Function Driver for WinSock Exploitation More Likely	CWE-416: Use After Free	Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Angelboy (@scwuaptx) with DEVCORE
CVE-2025-53137	Windows Ancillary Function Driver for WinSock Exploitation Less Likely	CWE-416: Use After Free	Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Angelboy (@scwuaptx) with DEVCORE
CVE-2025-50159	Remote Access Point-to-Point Protocol (PPP) EAP-TLS Exploitation Less Likely	CWE-416: Use After Free	Remote Access Point-to-Point Protocol (PPP) EAP-TLS Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Hussein Aurbyae with Microsoft
CVE-2025-50177	Microsoft Message Queuing (MSMQ) Exploitation More Likely	CWE-416: Use After Free CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')	Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability CVSS vector: AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Azure Yang with Kunlun Lab
CVE-2025-53142	Microsoft Brokering File System Exploitation Less Likely	CWE-416: Use After Free	Microsoft Brokering File System Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By ChenJian with Sea Security Orca Team hazard
CVE-2025-53152	Desktop Windows Manager Exploitation Less Likely	CWE-416: Use After Free	Desktop Windows Manager Remote Code Execution Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Varun Goel
CVE-2025-50153	Desktop Window Manager Exploitation Less Likely	CWE-416: Use After Free	Desktop Window Manager Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Varun Goel
CVE-2025-53722	Windows Remote Desktop Services Exploitation Less Likely	CWE-400: Uncontrolled Resource Consumption	Windows Remote Desktop Services Denial of Service Vulnerability CVSS vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Erik Egsgard with Field Effect
CVE-2025-53788	Windows Subsystem for Linux (WSL2) Kernel Exploitation Unlikely	CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition	Windows Subsystem for Linux (WSL2) Kernel Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Nitesh Surana (niteshsurana.com) and Nelson William Gamazo Sanchez of Trend Research
CVE-2025-50158	Windows NTFS Exploitation Less Likely	CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition	Windows NTFS Information Disclosure Vulnerability CVSS vector: AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C	2025-08-12	No	Reported By Anonymous
CVE-2025-53134	Windows Ancillary Function Driver for WinSock Exploitation Less Likely	CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition CWE-200: Exposure of Sensitive Information to an Unauthorized Actor	Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Angelboy (@scwuaptx) with DEVCORE
CVE-2025-50169	Windows SMB Exploitation Unlikely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-415: Double Free	Windows SMB Remote Code Execution Vulnerability CVSS vector: AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Anonymous
CVE-2025-50167	Windows Hyper-V Exploitation More Likely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free	Windows Hyper-V Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Chen Le Qi (@cplearns2h4ck) of STAR Labs SG Pte. Ltd. (@starlabs_sg) with Trend Zero Day Initiative
CVE-2025-49743	Windows Graphics Component Exploitation More Likely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free	Windows Graphics Component Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Anonymous
CVE-2025-49762	Windows Ancillary Function Driver for WinSock Exploitation Less Likely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')	Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Angelboy (@scwuaptx) with DEVCORE
CVE-2025-53132	Win32k Exploitation More Likely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free	Win32k Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By goodbyeselene with Trend Zero Day Initiative Anonymous
CVE-2025-53135	DirectX Graphics Kernel Exploitation Less Likely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')	DirectX Graphics Kernel Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By cyanbamboo and b2ahex
CVE-2025-53789	Windows StateRepository API Server file Exploitation Unlikely	CWE-306: Missing Authentication for Critical Function	Windows StateRepository API Server file Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By R4nger with CyberKunLun & Zhiniang Peng with HUST
CVE-2025-53778	Windows NTLM Exploitation More Likely	CWE-287: Improper Authentication	Windows NTLM Elevation of Privilege Vulnerability CVSS vector: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Tianze Ding (@D1iv3)
CVE-2025-50170	Windows Cloud Files Mini Filter Driver Exploitation Less Likely	CWE-280: Improper Handling of Insufficient Permissions or Privileges	Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Chen Le Qi (@cplearns2h4ck) with STAR Labs SG Pte. Ltd.
CVE-2025-53156	Windows Storage Port Driver Exploitation More Likely	CWE-200: Exposure of Sensitive Information to an Unauthorized Actor	Windows Storage Port Driver Information Disclosure Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C	2025-08-12	No	Reported By Anonymous DEVCORE - Angelboy (@scwuaptx) from DEVCORE Research Team with Trend Zero Day Initiative
CVE-2025-53136	NT OS Kernel Exploitation Less Likely	CWE-200: Exposure of Sensitive Information to an Unauthorized Actor	NT OS Kernel Information Disclosure Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C	2025-08-12	No	Reported By Bùi Quang Hiếu (@tykawaii98) with Crowdfense
CVE-2025-53723	Windows Hyper-V Exploitation Less Likely	CWE-197: Numeric Truncation Error CWE-122: Heap-based Buffer Overflow	Windows Hyper-V Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Chen Le Qi (@cplearns2h4ck) of STAR Labs SG Pte. Ltd. (@starlabs_sg) with Trend Zero Day Initiative pwnky
CVE-2025-50166	Windows Distributed Transaction Coordinator (MSDTC) Exploitation Less Likely	CWE-190: Integer Overflow or Wraparound	Windows Distributed Transaction Coordinator (MSDTC) Information Disclosure Vulnerability CVSS vector: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C	2025-08-12	No	Reported By Anonymous
CVE-2025-50173	Windows Installer Exploitation Less Likely	CWE-1390: Weak Authentication	Windows Installer Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By JaGoTu with DCIT, a.s. Shadi Habbal with TÜV Rheinland i-sec GmbH
CVE-2025-53720	Windows Routing and Remote Access Service (RRAS) Exploitation Unlikely	CWE-122: Heap-based Buffer Overflow	Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability CVSS vector: AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-08-12	No	Reported By Anonymous