CVE-2025-12816 CVE-2025-12816
Published December 4, 2025
Information published.
Microsoft Security Response Center Blog Alerts
CVE-2025-12977 CVE-2025-12977
Published December 4, 2025
Information published.
CVE-2025-12969 CVE-2025-12969
Published December 4, 2025
Information published.
CVE-2025-39829 trace/fgraph: Fix the warning caused by missing unregister notifier
Published December 4, 2025
Information published.
CVE-2025-39810 bnxt_en: Fix memory corruption when FW resources change during ifdown
Published December 4, 2025
Information published.
CVE-2023-53292 blk-mq: fix NULL dereference on q->elevator in blk_mq_elv_switch_none
Published December 4, 2025
Information published.
CVE-2025-64660 GitHub Copilot and Visual Studio Code Remote Code Execution Vulnerability
Published November 25, 2025
The following revisions have been made: 1) In the Security Updates table, corrected the impact entries to Remote Code Execution. 2) The CVSS scores have been updated. These are informational changes only. Customers who have successfully installed the update do not need to take any further action.
CVE-2025-54114 Windows Connected Devices Platform Service Elevation of Privilege Vulnerability
Published November 22, 2025
Updated Security Impact values. This is an informational change only.
CVE-2025-64656 Application Gateway Elevation of Privilege Vulnerability
Published November 21, 2025
Out-of-bounds read in Application Gateway allows an unauthorized attacker to elevate privileges over a network.
CVE-2025-60726 Microsoft Excel Information Disclosure Vulnerability
Published November 21, 2025
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
