Security
Headlines
HeadlinesLatestCVEs

Tag

#rce

CVE-2025-27491: Windows Hyper-V Remote Code Execution Vulnerability

Use after free in vhdmp.sys allows an authorized attacker to execute code over a network.

Microsoft Security Response Center
#vulnerability#windows#rce#auth#Windows Hyper-V#Security Vulnerability
CVE-2025-27482: Windows Remote Desktop Services Remote Code Execution Vulnerability

**According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability?** Successful exploitation of this vulnerability requires an attacker to win a race condition.

CVE-2025-27481: Windows Telephony Service Remote Code Execution Vulnerability

**According to the CVSS metric, the attack vector is network (AV:N) and the user interaction is required (UI:R). What is the target context of the remote code execution?** This attack requires a client to connect to a malicious server, and that could allow the attacker to gain code execution on the client.

CVE-2025-26670: Lightweight Directory Access Protocol (LDAP) Client Remote Code Execution Vulnerability

**According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability?** Successful exploitation of this vulnerability requires an attacker to win a race condition.