Microsoft Security Response Center Blog Alerts

CVE-2025-26630 Microsoft Access Remote Code Execution Vulnerability

Posted on Tuesday March 11, 2025

Use after free in Microsoft Office Access allows an unauthorized attacker to execute code locally.

 

CVE-2025-26629 Microsoft Office Remote Code Execution Vulnerability

Posted on Tuesday March 11, 2025

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

 

CVE-2025-26627 Azure Arc Installer Elevation of Privilege Vulnerability

Posted on Tuesday March 11, 2025

Improper neutralization of special elements used in a command ('command injection') in Azure Arc allows an authorized attacker to elevate privileges locally.

 

CVE-2025-24049 Azure Command Line Integration (CLI) Elevation of Privilege Vulnerability

Posted on Tuesday March 11, 2025

Improper neutralization of special elements used in a command ('command injection') in Azure Command Line Integration (CLI) allows an unauthorized attacker to elevate privileges locally.

 

CVE-2025-24994 Microsoft Windows Cross Device Service Elevation of Privilege Vulnerability

Posted on Tuesday March 11, 2025

Improper access control in Windows Cross Device Service allows an authorized attacker to elevate privileges locally.

 

CVE-2025-24993 Windows NTFS Remote Code Execution Vulnerability

Posted on Tuesday March 11, 2025

Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally.

 

Page:   1234567...119

Celebrating 35+ Years

Managed Internet Connections

Contact Us

Support Ends for Windows 10 22H2, Windows Server 2012 R2, Exchange 2013, Office 2016