Microsoft Defender For Endpoint
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Microsoft Defender For Endpoint.
Recent Microsoft Defender For Endpoint Security Advisories
| Advisory | Title | Published |
|---|---|---|
| CVE-2026-21537 | CVE-2026-21537 Microsoft Defender for Endpoint Linux Extension Remote Code Execution Vulnerability | February 10, 2026 |
| CVE-2025-47161 | CVE-2025-47161 Microsoft Defender for Endpoint Elevation of Privilege Vulnerability | May 15, 2025 |
| CVE-2024-49057 | CVE-2024-49057 Microsoft Defender for Endpoint on Android Spoofing Vulnerability | December 10, 2024 |
| CVE-2024-43614 | CVE-2024-43614 Microsoft Defender for Endpoint for Linux Spoofing Vulnerability | October 8, 2024 |
| CVE-2024-21315 | Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability | February 13, 2024 |
| CVE-2023-21809 | Microsoft Defender for Endpoint Security Feature Bypass Vulnerability | February 14, 2023 |
| CVE-2022-35828 | Microsoft Defender for Endpoint for Mac Elevation of Privilege Vulnerability | September 13, 2022 |
| CVE-2022-33637 | Microsoft Defender for Endpoint Tampering Vulnerability | July 12, 2022 |
| CVE-2022-23278 | Microsoft Defender for Endpoint Spoofing Vulnerability | March 8, 2022 |
By the Year
In 2026 there have been 1 vulnerability in Microsoft Defender For Endpoint with an average score of 8.8 out of ten. Last year, in 2025 Defender For Endpoint had 3 security vulnerabilities published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Defender For Endpoint in 2026 could surpass last years number. However, the average CVE base score of the vulnerabilities in 2026 is greater by 1.63.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 1 | 8.80 |
| 2025 | 3 | 7.17 |
| 2024 | 4 | 6.98 |
| 2023 | 1 | 7.80 |
| 2022 | 2 | 7.15 |
It may take a day or so for new Defender For Endpoint vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Microsoft Defender For Endpoint Security Vulnerabilities
Feb 2026: Microsoft Defender for Endpoint Linux Extension Remote Code Execution Vulnerability
CVE-2026-21537
8.8 - High
- February 10, 2026
Improper control of generation of code ('code injection') in Microsoft Defender for Linux allows an unauthorized attacker to execute code over an adjacent network.
Code Injection
Oct 2025: Microsoft Defender for Linux Denial of Service Vulnerability
CVE-2025-59497
7 - High
- October 14, 2025
Time-of-check time-of-use (toctou) race condition in Microsoft Defender for Linux allows an authorized attacker to deny service locally.
TOCTTOU
May 2025: Microsoft Defender for Endpoint Elevation of Privilege Vulnerability
CVE-2025-47161
7.8 - High
- May 15, 2025
Improper access control in Microsoft Defender for Endpoint allows an authorized attacker to elevate privileges locally.
Authorization
May 2025: Microsoft Defender Elevation of Privilege Vulnerability
CVE-2025-26684
6.7 - Medium
- May 13, 2025
External control of file name or path in Microsoft Defender for Endpoint allows an authorized attacker to elevate privileges locally.
External Control of File Name or Path
Windows Defender: Improper Authorization in Global Files Search Index
CVE-2024-49071
6.5 - Medium
- December 12, 2024
Improper authorization of an index that contains sensitive information from a Global Files search in Windows Defender allows an authorized attacker to disclose information over a network.
Improper Authorization of Index Containing Sensitive Information
Android MS Defender Endpoint Spoofing Vulnerability CVE-2024-49057
CVE-2024-49057
8.1 - High
- December 12, 2024
Microsoft Defender for Endpoint on Android Spoofing Vulnerability
Improper Input Validation
Microsoft Defender for Endpoint: Relative Path Traversal Allows Local Spoofing
CVE-2024-43614
5.5 - Medium
- October 08, 2024
Relative path traversal in Microsoft Defender for Endpoint allows an authorized attacker to perform spoofing locally.
Relative Path Traversal
Privilege Escalation in Microsoft Defender for Endpoint
CVE-2024-21315
7.8 - High
- February 13, 2024
Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability
MS Defender EP Security Feature Bypass Vulnerability
CVE-2023-21809
7.8 - High
- February 14, 2023
Microsoft Defender for Endpoint Security Feature Bypass Vulnerability
MS Defender mac EoP Vulnerability
CVE-2022-35828
7.8 - High
- September 13, 2022
Microsoft Defender for Endpoint for Mac Elevation of Privilege Vulnerability
Microsoft Defender for Endpoint Tampering Vulnerability
CVE-2022-33637
6.5 - Medium
- July 12, 2022
Microsoft Defender for Endpoint Tampering Vulnerability
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Microsoft Defender For Endpoint or by Microsoft? Click the Watch button to subscribe.
