Microsoft Powershell 7.5
9 CVEs affecting Microsoft Powershell 7.5. Latest disclosed: 2026-04-14. Critical: 1, High: 8.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-43498 | Critical | 9.8 | 2024-11-12 | .NET and Visual Studio Remote Code Execution Vulnerability |
CVE-2026-26143 | High | 7.8 | 2026-04-14 | Improper input validation in Microsoft PowerShell allows an unauthorized attacker to bypass a security feature locally. |
CVE-2026-26171 | High | 7.5 | 2026-04-14 | Uncontrolled resource consumption in .NET allows an unauthorized attacker to deny service over a network. |
CVE-2025-30399 | High | 7.5 | 2025-06-13 | Untrusted search path in .NET and Visual Studio allows an unauthorized attacker to execute code over a network. |
CVE-2025-21171 | High | 7.5 | 2025-01-14 | .NET Remote Code Execution Vulnerability |
CVE-2024-43499 | High | 7.5 | 2024-11-12 | .NET and Visual Studio Denial of Service Vulnerability |
CVE-2024-43485 | High | 7.5 | 2024-10-08 | .NET and Visual Studio Denial of Service Vulnerability |
CVE-2025-25004 | High | 7.3 | 2025-10-14 | Improper access control in Microsoft PowerShell allows an authorized attacker to elevate privileges locally. |
CVE-2025-49734 | High | 7.0 | 2025-09-09 | Improper restriction of communication channel to intended endpoints in Windows PowerShell allows an authorized attacker to elevate privileges locally. |