Microsoft Security Response Center Blog Alerts

CVE-2025-29833 Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability

Posted on Tuesday May 13, 2025

Time-of-check time-of-use (toctou) race condition in Windows Virtual Machine Bus allows an authorized attacker to execute code over a network.

 

CVE-2025-29832 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Posted on Tuesday May 13, 2025

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

 

CVE-2025-29831 Windows Remote Desktop Services Remote Code Execution Vulnerability

Posted on Tuesday May 13, 2025

Use after free in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.

 

CVE-2025-29830 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Posted on Tuesday May 13, 2025

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

 

CVE-2025-29829 Windows Trusted Runtime Interface Driver Information Disclosure Vulnerability

Posted on Tuesday May 13, 2025

Use of uninitialized resource in Windows Trusted Runtime Interface Driver allows an authorized attacker to disclose information locally.

 

CVE-2025-26685 Microsoft Defender for Identity Spoofing Vulnerability

Posted on Tuesday May 13, 2025

Improper authentication in Microsoft Defender for Identity allows an unauthorized attacker to perform spoofing over an adjacent network.

 

Page:   1...161718192021222324...172

Celebrating 35+ Years

Managed Computer Support Services

Contact Us

Support Ends for Windows 10 22H2, Windows Server 2012 R2, Exchange 2013, Office 2016