Microsoft Security Response Center Blog Alerts

CVE-2025-29808 Windows Cryptographic Services Information Disclosure Vulnerability

Posted on Tuesday April 08, 2025

Use of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allows an authorized attacker to disclose information locally.

 

CVE-2025-29809 Windows Kerberos Security Feature Bypass Vulnerability

Posted on Tuesday April 08, 2025

Insecure storage of sensitive information in Windows Kerberos allows an authorized attacker to bypass a security feature locally.

 

CVE-2025-29804 Visual Studio Elevation of Privilege Vulnerability

Posted on Tuesday April 08, 2025

Improper access control in Visual Studio allows an authorized attacker to elevate privileges locally.

 

CVE-2025-29801 Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

Posted on Tuesday April 08, 2025

Incorrect default permissions in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.

 

CVE-2025-29802 Visual Studio Elevation of Privilege Vulnerability

Posted on Tuesday April 08, 2025

Improper access control in Visual Studio allows an authorized attacker to elevate privileges locally.

 

CVE-2025-29800 Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

Posted on Tuesday April 08, 2025

Improper privilege management in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.

 

Page:   1...282930313233343536...172

Celebrating 35+ Years

Managed Computer Support Services

Contact Us

Support Ends for Windows 10 22H2, Windows Server 2012 R2, Exchange 2013, Office 2016