Microsoft
Security Scorecard
Score
25F
Total CVEs
641
Patch Rate
28%
178 patched
Avg Response
1052d
days to patch
Critical Gaps
35
exploitable, no detection
Severity Breakdown
Critical17
High299
Medium264
Low40
Patch Status
Patched178 (28%)
Partial/Workaround31 (5%)
Unpatched432 (67%)
CVEs (645)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-62474 | Windows Remote Access Connection Manager Privilege Escalation | High | 7.8 | 23d | Unpatched |
| CVE-2025-62556 | Microsoft Office Excel Pointer Dereference Exploit | High | 7.8 | - | Patched |
| CVE-2025-62559 | Wordle Exploit | High | 7.8 | - | Workaround |
| CVE-2025-62560 | Excel Pointer Exploit | High | 7.8 | - | Patched |
| CVE-2025-62561 | Excel Pointer Exploit | High | 7.8 | - | Patched |
| CVE-2025-62563 | Windows Server Remote Code Execution Vulnerability | High | 7.8 | - | Patched |
| CVE-2025-64661 | Windows Shell Concurrent Execution Vulnerability | High | 7.8 | - | Patched |
| CVE-2025-64673 | Storvsp.sys Driver Privilege Escalation | High | 7.8 | - | Patched |
| CVE-2025-64679 | DWM Core Library Heap Overflow | High | 7.8 | - | Patched |
| CVE-2025-64680 | Windows DWM Core Library Heap Overflow | High | 7.8 | - | Patched |