Month: April 2025

Use after free in Windows Hyper-V allows an authorized attacker to execute code over a network. Continue reading CVE-2025-27491 Windows Hyper-V Remote Code Execution Vulnerability→

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-24073 Microsoft DWM Core Library Elevation of Privilege Vulnerability→

Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network. Continue reading CVE-2025-27486 Windows Standards-Based Storage Management Service Denial of Service Vulnerability→

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-24074 Microsoft DWM Core Library Elevation of Privilege Vulnerability→

Heap-based buffer overflow in Remote Desktop Client allows an authorized attacker to execute code over a network. Continue reading CVE-2025-27487 Remote Desktop Client Remote Code Execution Vulnerability→

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-29824 Windows Common Log File System Driver Elevation of Privilege Vulnerability→

Sensitive data storage in improperly locked memory in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network. Continue reading CVE-2025-27482 Windows Remote Desktop Services Remote Code Execution Vulnerability→

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. Continue reading CVE-2025-29823 Microsoft Excel Remote Code Execution Vulnerability→