Microsoft Security Response Center Blog Alerts

CVE-2025-32701 Windows Common Log File System Driver Elevation of Privilege Vulnerability

Posted on Tuesday May 13, 2025

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

 

CVE-2025-30400 Microsoft DWM Core Library Elevation of Privilege Vulnerability

Posted on Tuesday May 13, 2025

Use after free in Windows DWM allows an authorized attacker to elevate privileges locally.

 

CVE-2025-30394 Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability

Posted on Tuesday May 13, 2025

Sensitive data storage in improperly locked memory in Remote Desktop Gateway Service allows an unauthorized attacker to deny service over a network.

 

CVE-2025-29826 Microsoft Dataverse Elevation of Privilege Vulnerability

Posted on Tuesday May 13, 2025

Improper handling of insufficient permissions or privileges in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.

 

CVE-2025-30393 Microsoft Excel Remote Code Execution Vulnerability

Posted on Tuesday May 13, 2025

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

 

CVE-2025-27468 Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

Posted on Tuesday May 13, 2025

Improper privilege management in Windows Secure Kernel Mode allows an authorized attacker to elevate privileges locally.

 

Page:   1...181920212223242526...172

Celebrating 35+ Years

Managed Computer Support Services

Contact Us

Support Ends for Windows 10 22H2, Windows Server 2012 R2, Exchange 2013, Office 2016