Microsoft Security Response Center Blog Alerts

CVE-2025-24987 Windows USB Video Class System Driver Elevation of Privilege Vulnerability

Posted on Tuesday March 11, 2025

Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to elevate privileges with a physical attack.

 

CVE-2025-24986 Azure Promptflow Remote Code Execution Vulnerability

Posted on Tuesday March 11, 2025

Improper isolation or compartmentalization in Azure PromptFlow allows an unauthorized attacker to execute code over a network.

 

CVE-2025-24083 Microsoft Office Remote Code Execution Vulnerability

Posted on Tuesday March 11, 2025

Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally.

 

CVE-2025-24082 Microsoft Excel Remote Code Execution Vulnerability

Posted on Tuesday March 11, 2025

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

 

CVE-2025-24081 Microsoft Excel Remote Code Execution Vulnerability

Posted on Tuesday March 11, 2025

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

 

CVE-2025-24080 Microsoft Office Remote Code Execution Vulnerability

Posted on Tuesday March 11, 2025

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

 

Page:   1...789101112131415...120

Celebrating 35+ Years

Managed Internet Connections

Contact Us

Support Ends for Windows 10 22H2, Windows Server 2012 R2, Exchange 2013, Office 2016