Microsoft Security Response Center Blog Alerts

CVE-2025-27473 HTTP.sys Denial of Service Vulnerability

Posted on Tuesday April 08, 2025

Uncontrolled resource consumption in Windows HTTP.sys allows an unauthorized attacker to deny service over a network.

 

CVE-2025-27470 Windows Standards-Based Storage Management Service Denial of Service Vulnerability

Posted on Tuesday April 08, 2025

Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.

 

CVE-2025-27471 Microsoft Streaming Service Denial of Service Vulnerability

Posted on Tuesday April 08, 2025

Sensitive data storage in improperly locked memory in Microsoft Streaming Service allows an unauthorized attacker to deny service over a network.

 

CVE-2025-26688 Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability

Posted on Tuesday April 08, 2025

Stack-based buffer overflow in Microsoft Virtual Hard Drive allows an authorized attacker to elevate privileges locally.

 

CVE-2025-26687 Win32k Elevation of Privilege Vulnerability

Posted on Tuesday April 08, 2025

Use after free in Windows Win32K - GRFX allows an unauthorized attacker to elevate privileges over a network.

 

CVE-2025-26686 Windows TCP/IP Remote Code Execution Vulnerability

Posted on Tuesday April 08, 2025

Sensitive data storage in improperly locked memory in Windows TCP/IP allows an unauthorized attacker to execute code over a network.

 

Page:   1...444546474849505152...172

Celebrating 35+ Years

Managed Internet Connections

Contact Us

Support Ends for Windows 10 22H2, Windows Server 2012 R2, Exchange 2013, Office 2016