Microsoft Security Response Center Blog Alerts

CVE-2025-29969 MS-EVEN RPC Remote Code Execution Vulnerability

Posted on Tuesday May 13, 2025

Time-of-check time-of-use (toctou) race condition in Windows Fundamentals allows an authorized attacker to execute code over a network.

 

CVE-2025-29968 Active Directory Certificate Services (AD CS) Denial of Service Vulnerability

Posted on Tuesday May 13, 2025

Improper input validation in Active Directory Certificate Services (AD CS) allows an authorized attacker to deny service over a network.

 

CVE-2025-29967 Remote Desktop Client Remote Code Execution Vulnerability

Posted on Tuesday May 13, 2025

Heap-based buffer overflow in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.

 

CVE-2025-29966 Remote Desktop Client Remote Code Execution Vulnerability

Posted on Tuesday May 13, 2025

Heap-based buffer overflow in Windows Remote Desktop allows an unauthorized attacker to execute code over a network.

 

CVE-2025-29964 Windows Media Remote Code Execution Vulnerability

Posted on Tuesday May 13, 2025

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.

 

CVE-2025-29960 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Posted on Tuesday May 13, 2025

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

 

Page:   1...222324252627282930...172

Celebrating 35+ Years

Off-Site Cloud Backups

Contact Us

Support Ends for Windows 10 22H2, Windows Server 2012 R2, Exchange 2013, Office 2016