Microsoft
Security Scorecard
Score
8F
Total CVEs
440
Patch Rate
3%
13 patched
Avg Response
335d
days to patch
Critical Gaps
39
exploitable, no detection
Severity Breakdown
Critical6
High149
Medium224
Low40
Patch Status
Patched13 (3%)
Partial/Workaround7 (2%)
Unpatched420 (95%)
CVEs (443)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-64660 | GitHub Copilot/VS Code Exploit | HIGH | 8.0 | 23d | Unpatched |
| CVE-2025-9317 | Edge Project File Brute-Forcing Vulnerability | HIGH | 8.4 | 29d | Unpatched |
| CVE-2025-60722 | OneDrive for Android Path Traversal Vulnerability | MEDIUM | 6.5 | 34d | Unpatched |
| CVE-2025-59509 | Windows Speech | MEDIUM | 5.5 | 34d | Unpatched |
| CVE-2025-62209 | Windows License Manager Vulnerability | MEDIUM | 5.5 | 34d | Unpatched |
| CVE-2025-62208 | Windows License Manager Log File Vulnerability | MEDIUM | 5.5 | 34d | Unpatched |
| CVE-2025-60706 | Windows Hyper-V Local Info Disclosure Vulnerability | MEDIUM | 5.5 | 34d | Unpatched |
| CVE-2025-59510 | Windows RRAS Link Following Vulnerability | MEDIUM | 5.5 | 34d | Unpatched |
| CVE-2025-62214 | Visual Studio Command Injection Vulnerability | MEDIUM | 6.7 | 34d | Unpatched |
| CVE-2025-60728 | Excel Pointer Dereference Vulnerability | MEDIUM | 4.3 | 34d | Unpatched |