General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-47991 | Use after free in Microsoft Input Method Editor (IME) allows an authorized attacker to elevate privileges locally. | High (7.8) | 2025-07-08 | General-Purpose |
| CVE-2025-47988 | Improper control of generation of code ('code injection') in Azure Monitor Agent allows an unauthorized attacker to exe… | High (7.5) | 2025-07-08 | General-Purpose |
| CVE-2025-47987 | Heap-based buffer overflow in Windows Cred SSProvider Protocol allows an authorized attacker to elevate privileges loca… | High (7.8) | 2025-07-08 | General-Purpose |
| CVE-2025-47986 | Use after free in Universal Print Management Service allows an authorized attacker to elevate privileges locally. | High (8.8) | 2025-07-08 | General-Purpose |
| CVE-2025-47985 | Untrusted pointer dereference in Windows Event Tracing allows an authorized attacker to elevate privileges locally. | High (7.8) | 2025-07-08 | General-Purpose |