#Security Vulnerability

CVE-2025-29829: Windows Trusted Runtime Interface Driver Information Disclosure Vulnerability

Use of uninitialized resource in Windows Trusted Runtime Interface Driver allows an authorized attacker to disclose information locally.

6 days ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #auth #Windows Trusted Runtime Interface Driver #Security Vulnerability

CVE-2025-29841: Universal Print Management Service Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization ('race condition') in Universal Print Management Service allows an authorized attacker to elevate privileges locally.

6 days ago

Microsoft Security Response Center

Open in Source

#vulnerability #auth #Universal Print Management Service #Security Vulnerability

CVE-2025-29840: Windows Media Remote Code Execution Vulnerability

Stack-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.

6 days ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #rce #buffer_overflow #auth #Windows Media #Security Vulnerability

CVE-2025-26677: Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability

Uncontrolled resource consumption in Remote Desktop Gateway Service allows an unauthorized attacker to deny service over a network.

6 days ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #dos #auth #Remote Desktop Gateway Service #Security Vulnerability

CVE-2025-32709: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

6 days ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #auth #Windows Ancillary Function Driver for WinSock #Security Vulnerability

CVE-2025-26685: Microsoft Defender for Identity Spoofing Vulnerability

Improper authentication in Microsoft Defender for Identity allows an unauthorized attacker to elevate privileges locally.

6 days ago

Microsoft Security Response Center

Open in Source

#vulnerability #microsoft #auth #Microsoft Defender for Identity #Security Vulnerability

CVE-2025-27488: Microsoft Windows Hardware Lab Kit (HLK) Elevation of Privilege Vulnerability

Use of hard-coded credentials in Windows Hardware Lab Kit allows an authorized attacker to elevate privileges locally.

6 days ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #microsoft #hard_coded_credentials #auth #Windows Hardware Lab Kit #Security Vulnerability

CVE-2025-29839: Windows Multiple UNC Provider Driver Information Disclosure Vulnerability

Out-of-bounds read in Windows File Server allows an unauthorized attacker to disclose information locally.

6 days ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #auth #Windows File Server #Security Vulnerability

CVE-2025-29838: Windows ExecutionContext Driver Elevation of Privilege Vulnerability

6 days ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #Windows Drivers #Security Vulnerability

CVE-2025-30382: Microsoft SharePoint Server Remote Code Execution Vulnerability

Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker to execute code locally.

6 days ago

Microsoft Security Response Center

Open in Source

#vulnerability #microsoft #rce #auth #Microsoft Office SharePoint #Security Vulnerability

Tag

#Security Vulnerability