Microsoft Security Response Center Blog Alerts

Insertion of sensitive information into log file in Azure Local Cluster allows an authorized attacker to disclose information over an adjacent network.

Improper input validation in Dynamics Business Central allows an authorized attacker to disclose information locally.

Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.

Use after free in Windows Win32K – GRFX allows an authorized attacker to elevate privileges locally.

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

Improper access control in Windows Resilient File System (ReFS) allows an authorized attacker to disclose information over a network.

Heap-based buffer overflow in Remote Desktop Client allows an authorized attacker to execute code over a network.

Use after free in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network.

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

Improper authorization in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.