Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2025-49690: Capability Access Management Service (camsvc) Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization (‘race condition’) in Capability Access Management Capability Consent Manager (camsvc service) allows an unauthorized attacker to elevate privileges locally.

Microsoft Security Response Center
#vulnerability#auth#Capability Access Management Service (camsvc)#Security Vulnerability

Microsoft Security Response Center: Latest News

CVE-2025-48822: Windows Hyper-V Discrete Device Assignment (DDA) Remote Code Execution Vulnerability