Microsoft Security Response Center Blog Alerts

CVE-2025-24044 Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability

Posted on Tuesday March 11, 2025

Use after free in Windows Win32 Kernel Subsystem allows an authorized attacker to elevate privileges locally.

 

CVE-2024-9157 Synaptics: CVE-2024-9157 Synaptics Service Binaries DLL Loading Vulnerability

Posted on Tuesday March 11, 2025

Information published.

 

CVE-2025-24035 Windows Remote Desktop Services Remote Code Execution Vulnerability

Posted on Tuesday March 11, 2025

Sensitive data storage in improperly locked memory in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network.

 

CVE-2025-26643 Microsoft Edge (Chromium-based) Spoofing Vulnerability

Posted on Friday March 07, 2025

No cwe for this issue in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

 

Chromium: CVE-2025-1914 Out of bounds read in V8

Posted on Friday March 07, 2025

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2025) for more information.

 

Chromium: CVE-2025-1916 Use after free in Profiles

Posted on Friday March 07, 2025

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2025) for more information.

 

Page:   1...91011121314151617...120

Celebrating 35+ Years

Off-Site Cloud Backups

Contact Us

Support Ends for Windows 10 22H2, Windows Server 2012 R2, Exchange 2013, Office 2016