Microsoft Security Response Center Blog Alerts

Chromium: CVE-2025-4664 Insufficient policy enforcement in Loader

Posted on Thursday May 15, 2025

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2025) for more information. Google is aware of reports that an exploit for CVE-2025-4664 exists in the wild.

Chromium: CVE-2025-4609 Incorrect handle provided in unspecified circumstances in Mojo

Posted on Thursday May 15, 2025

CVE-2025-47161 Microsoft Defender for Endpoint Elevation of Privilege Vulnerability

Posted on Thursday May 15, 2025

Information published.

CVE-2017-0045 Windows DVD Maker XML External Entity Information Disclosure Vulnerability

Posted on Tuesday May 13, 2025

Corrected CVE title. This is an informational change only.

CVE-2025-29979 Microsoft Excel Remote Code Execution Vulnerability

Posted on Tuesday May 13, 2025

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVE-2025-24063 Kernel Streaming Service Driver Elevation of Privilege Vulnerability

Posted on Tuesday May 13, 2025

Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.

Page: 1...111213141516171819...172

Celebrating 35+ Years

Microsoft Security Response Center Blog Alerts

Chromium: CVE-2025-4664 Insufficient policy enforcement in Loader

Chromium: CVE-2025-4609 Incorrect handle provided in unspecified circumstances in Mojo

CVE-2025-47161 Microsoft Defender for Endpoint Elevation of Privilege Vulnerability

CVE-2017-0045 Windows DVD Maker XML External Entity Information Disclosure Vulnerability

CVE-2025-29979 Microsoft Excel Remote Code Execution Vulnerability

CVE-2025-24063 Kernel Streaming Service Driver Elevation of Privilege Vulnerability

Contact Us

Contact Info

Follow Us

Affiliations

More Info