Source

Microsoft Security Response Center

CVE-2025-33066: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

1 month ago

Open in Source

#vulnerability #windows #rce #buffer_overflow #auth #Windows Routing and Remote Access Service (RRAS)#Security Vulnerability

CVE-2025-33065: Windows Storage Management Provider Information Disclosure Vulnerability

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

1 month ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #auth #Windows Storage Management Provider #Security Vulnerability

CVE-2025-33062: Windows Storage Management Provider Information Disclosure Vulnerability

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

1 month ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #auth #Windows Storage Management Provider #Security Vulnerability

CVE-2025-33061: Windows Storage Management Provider Information Disclosure Vulnerability

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

1 month ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #auth #Windows Storage Management Provider #Security Vulnerability

CVE-2025-33060: Windows Storage Management Provider Information Disclosure Vulnerability

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

1 month ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #auth #Windows Storage Management Provider #Security Vulnerability

CVE-2025-33059: Windows Storage Management Provider Information Disclosure Vulnerability

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

1 month ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #auth #Windows Storage Management Provider #Security Vulnerability

CVE-2025-33058: Windows Storage Management Provider Information Disclosure Vulnerability

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

1 month ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #auth #Windows Storage Management Provider #Security Vulnerability

CVE-2025-32724: Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability

Uncontrolled resource consumption in Windows Local Security Authority Subsystem Service (LSASS) allows an unauthorized attacker to deny service over a network.

1 month ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #dos #auth #Windows Local Security Authority Subsystem Service (LSASS)#Security Vulnerability

CVE-2025-32722: Windows Storage Port Driver Information Disclosure Vulnerability

Improper access control in Windows Storage Port Driver allows an authorized attacker to disclose information locally.

1 month ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #auth #Windows Storage Port Driver #Security Vulnerability

CVE-2025-32721: Windows Recovery Driver Elevation of Privilege Vulnerability

Improper link resolution before file access ('link following') in Windows Recovery Driver allows an authorized attacker to elevate privileges locally.

1 month ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #auth #Windows Recovery Driver #Security Vulnerability