CVE-2025-11460: Chromium: CVE-2025-11460 Use after free in Storage

CVE-2025-11458: Chromium: CVE-2025-11458 Heap buffer overflow in Sync

CVE-2025-59218: Azure Entra ID Elevation of Privilege Vulnerability

CVE-2025-59286: Copilot Spoofing Vulnerability

CVE-2025-59271: Redis Enterprise Elevation of Privilege Vulnerability

**According to the CVSS metric, privileges required is low (PR:L). What does that mean for this vulnerability?**

Any authenticated attacker could trigger this vulnerability. It does not require admin or other elevated privileges.

Headline

CVE-2025-54897: Microsoft SharePoint Remote Code Execution Vulnerability

Microsoft Security Response Center: Latest News