CVE-2025-62221: Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

CVE-2025-54100: PowerShell Remote Code Execution Vulnerability

CVE-2025-64680: Windows DWM Core Library Elevation of Privilege Vulnerability

CVE-2025-64679: Windows DWM Core Library Elevation of Privilege Vulnerability

CVE-2025-64678: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.

Headline

CVE-2025-64672: Microsoft SharePoint Server Spoofing Vulnerability

Microsoft Security Response Center: Latest News