Microsoft Security Response Center Blog Alerts

CVE-2025-47166 Microsoft SharePoint Server Remote Code Execution Vulnerability

Posted on Tuesday June 10, 2025

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

 

CVE-2025-47163 Microsoft SharePoint Server Remote Code Execution Vulnerability

Posted on Tuesday June 10, 2025

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

 

CVE-2025-33073 Windows SMB Client Elevation of Privilege Vulnerability

Posted on Tuesday June 10, 2025

Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network.

 

CVE-2025-33070 Windows Netlogon Elevation of Privilege Vulnerability

Posted on Tuesday June 10, 2025

Use of uninitialized resource in Windows Netlogon allows an unauthorized attacker to elevate privileges over a network.

 

CVE-2025-33069 Windows App Control for Business Security Feature Bypass Vulnerability

Posted on Tuesday June 10, 2025

Improper verification of cryptographic signature in App Control for Business (WDAC) allows an unauthorized attacker to bypass a security feature locally.

 

CVE-2025-33068 Windows Standards-Based Storage Management Service Denial of Service Vulnerability

Posted on Tuesday June 10, 2025

Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.

 

Page:   123456789...172

Celebrating 35+ Years

Managed Internet Connections

Contact Us

Support Ends for Windows 10 22H2, Windows Server 2012 R2, Exchange 2013, Office 2016