#auth

CVE-2025-26685: Microsoft Defender for Identity Spoofing Vulnerability

Improper authentication in Microsoft Defender for Identity allows an unauthorized attacker to elevate privileges locally.

9 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #microsoft #auth #Microsoft Defender for Identity #Security Vulnerability

CVE-2025-27488: Microsoft Windows Hardware Lab Kit (HLK) Elevation of Privilege Vulnerability

Use of hard-coded credentials in Windows Hardware Lab Kit allows an authorized attacker to elevate privileges locally.

9 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #microsoft #hard_coded_credentials #auth #Windows Hardware Lab Kit #Security Vulnerability

CVE-2025-29839: Windows Multiple UNC Provider Driver Information Disclosure Vulnerability

Out-of-bounds read in Windows File Server allows an unauthorized attacker to disclose information locally.

9 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #auth #Windows File Server #Security Vulnerability

CVE-2025-30382: Microsoft SharePoint Server Remote Code Execution Vulnerability

Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker to execute code locally.

9 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #microsoft #rce #auth #Microsoft Office SharePoint #Security Vulnerability

CVE-2025-30386: Microsoft Office Remote Code Execution Vulnerability

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

9 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #microsoft #rce #auth #Microsoft Office #Security Vulnerability

CVE-2025-30384: Microsoft SharePoint Server Remote Code Execution Vulnerability

Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker to execute code locally.

9 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #microsoft #rce #auth #Microsoft Office SharePoint #Security Vulnerability

CVE-2025-30383: Microsoft Excel Remote Code Execution Vulnerability

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

9 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #microsoft #rce #auth #Microsoft Office Excel #Security Vulnerability

CVE-2025-27468: Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

Improper privilege management in Windows Secure Kernel Mode allows an unauthorized attacker to elevate privileges locally.

9 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #auth #Windows Secure Kernel Mode #Security Vulnerability

CVE-2025-30400: Microsoft DWM Core Library Elevation of Privilege Vulnerability

Use after free in Windows DWM allows an authorized attacker to elevate privileges locally.

9 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #microsoft #auth #Windows DWM #Security Vulnerability

CVE-2025-30394: Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability

Sensitive data storage in improperly locked memory in Remote Desktop Gateway Service allows an unauthorized attacker to deny service over a network.

9 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #dos #perl #auth #Remote Desktop Gateway Service #Security Vulnerability

Tag

#auth