← Back

Defender For Endpoint

defender_for_endpoint

Vendor: Microsoft • 11 CVEs

CVEs (11)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2026-21537
1Microsoft
1Defender For Endpoint
Feb 11, 2026
Feb 10, 2026
N/A· v4
8.8 HIGH· v3
N/A· v2
Improper control of generation of code ('code injection') in Microsoft Defender for Linux allows an unauthorized attacker to execute code over an adjacent network.
CVE-2025-59497
1Microsoft
1Defender For Endpoint
Oct 22, 2025
Oct 14, 2025
N/A· v4
4.7 MEDIUM· v3
N/A· v2
Time-of-check time-of-use (toctou) race condition in Microsoft Defender for Linux allows an authorized attacker to deny service locally.
CVE-2025-47161
1Microsoft
1Defender For Endpoint
Jul 8, 2025
May 15, 2025
N/A· v4
7.8 HIGH· v3
N/A· v2
Improper access control in Microsoft Defender for Endpoint allows an authorized attacker to elevate privileges locally.
CVE-2025-26684
1Microsoft
1Defender For Endpoint
May 19, 2025
May 13, 2025
N/A· v4
6.7 MEDIUM· v3
N/A· v2
External control of file name or path in Microsoft Defender for Endpoint allows an authorized attacker to elevate privileges locally.
CVE-2024-49071
1Microsoft
1Defender For Endpoint
Jan 10, 2025
Dec 12, 2024
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Improper authorization of an index that contains sensitive information from a Global Files search in Windows Defender allows an authorized attacker to disclose information over a network.
CVE-2024-49057
1Microsoft
1Defender For Endpoint
Jan 8, 2025
Dec 12, 2024
N/A· v4
8.1 HIGH· v3
N/A· v2
Microsoft Defender for Endpoint on Android Spoofing Vulnerability
CVE-2024-43614
1Microsoft
1Defender For Endpoint
Jul 8, 2025
Oct 8, 2024
N/A· v4
5.5 MEDIUM· v3
N/A· v2
Relative path traversal in Microsoft Defender for Endpoint allows an authorized attacker to perform spoofing locally.
CVE-2024-21315
1Microsoft
1Defender For Endpoint
Nov 21, 2024
Feb 13, 2024
N/A· v4
7.8 HIGH· v3
N/A· v2
Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability
CVE-2022-35828
1Microsoft
1Defender For Endpoint
Jan 2, 2025
Sep 13, 2022
N/A· v4
7.8 HIGH· v3
N/A· v2
Microsoft Defender for Endpoint for Mac Elevation of Privilege Vulnerability
CVE-2022-33637
1Microsoft
1Defender For Endpoint
Nov 21, 2024
Jul 12, 2022
N/A· v4
6.5 MEDIUM· v3
4.0 MEDIUM· v2
Microsoft Defender for Endpoint Tampering Vulnerability
CVE-2022-23278
1Microsoft
2Defender For Endpoint
Defender For Endpoint Edr Sensor
Nov 21, 2024
Mar 9, 2022
N/A· v4
5.9 MEDIUM· v3
4.3 MEDIUM· v2
Microsoft Defender for Endpoint Spoofing Vulnerability