CVE-2025-32711: M365 Copilot Information Disclosure Vulnerability

CVE-2025-47968: Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

CVE-2025-47959: Visual Studio Remote Code Execution Vulnerability

CVE-2025-47176: Microsoft Outlook Remote Code Execution Vulnerability

CVE-2025-47175: Microsoft PowerPoint Remote Code Execution Vulnerability

Improper neutralization of special elements used in a command ('command injection') in Visual Studio allows an authorized attacker to execute code over a network.

Headline

CVE-2025-47959: Visual Studio Remote Code Execution Vulnerability

Microsoft Security Response Center: Latest News