Microsoft Security Response Center Blog Alerts

CVE-2025-29977 Microsoft Excel Remote Code Execution Vulnerability

Posted on Tuesday May 13, 2025

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

 

CVE-2025-29976 Microsoft SharePoint Server Elevation of Privilege Vulnerability

Posted on Tuesday May 13, 2025

Improper privilege management in Microsoft Office SharePoint allows an authorized attacker to elevate privileges locally.

 

CVE-2025-29975 Microsoft PC Manager Elevation of Privilege Vulnerability

Posted on Tuesday May 13, 2025

Improper link resolution before file access ('link following') in Microsoft PC Manager allows an authorized attacker to elevate privileges locally.

 

CVE-2025-29973 Microsoft Azure File Sync Elevation of Privilege Vulnerability

Posted on Tuesday May 13, 2025

Improper access control in Azure File Sync allows an authorized attacker to elevate privileges locally.

 

CVE-2025-29971 Web Threat Defense (WTD.sys) Denial of Service Vulnerability

Posted on Tuesday May 13, 2025

Out-of-bounds read in Web Threat Defense (WTD.sys) allows an unauthorized attacker to deny service over a network.

 

CVE-2025-29970 Microsoft Brokering File System Elevation of Privilege Vulnerability

Posted on Tuesday May 13, 2025

Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.

 

Page:   1...212223242526272829...172

Celebrating 35+ Years

Managed Computer Support Services

Contact Us

Support Ends for Windows 10 22H2, Windows Server 2012 R2, Exchange 2013, Office 2016