CVE-2025-49752: Azure Bastion Elevation of Privilege Vulnerability

CVE-2025-59245: Microsoft SharePoint Online Elevation of Privilege Vulnerability

CVE-2025-64655: Dynamics OmniChannel SDK Storage Containers Elevation of Privilege Vulnerability

CVE-2025-64657: Azure Application Gateway Elevation of Privilege Vulnerability

CVE-2025-64656: Application Gateway Elevation of Privilege Vulnerability

Exposure of sensitive information to an unauthorized actor in Microsoft Dynamics 365 (on-premises) allows an unauthorized attacker to disclose information over a network.

Headline

CVE-2025-62206: Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability

Microsoft Security Response Center: Latest News