Microsoft
Security Scorecard
Score
25F
Total CVEs
641
Patch Rate
28%
178 patched
Avg Response
1052d
days to patch
Critical Gaps
35
exploitable, no detection
Severity Breakdown
Critical17
High299
Medium264
Low40
Patch Status
Patched178 (28%)
Partial/Workaround31 (5%)
Unpatched432 (67%)
CVEs (645)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-62224 | Edge Spoofing Vulnerability | Medium | 5.5 | - | Workaround |
| CVE-2023-53977 | MyBB Forums XSS | Medium | 6.4 | - | Patched |
| CVE-2025-64675 | Azure Cosmos DB Cross-Site Scripting Vulnerability | High | 8.3 | - | Patched |
| CVE-2025-65041 | Microsoft Partner Center Privilege Escalation | Critical | 10.0 | - | Workaround |
| CVE-2025-64676 | Microsoft Purview | High | 7.2 | - | Patched |
| CVE-2025-64677 | Office Out-of-Box Experience (OOBE) | High | 8.2 | - | Patched |
| CVE-2025-51962 | MicroStudio HTML Injection Vulnerability | Medium | 6.1 | - | Patched |
| CVE-2025-64669 | Windows Admin Center Privilege Escalation | High | 7.8 | - | Patched |
| CVE-2025-62567 | Windows Hyper-V Integer Underflow Vulnerability | Medium | 5.3 | 25d | Unpatched |
| CVE-2025-62456 | Windows Resilient File System (ReFS) Heap Overflow | High | 8.8 | - | Patched |