Month: April 2025

Improper input validation in Windows Kerberos allows an unauthorized attacker to elevate privileges over a network. Continue reading CVE-2025-26647 Windows Kerberos Elevation of Privilege Vulnerability→

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally. Continue reading CVE-2025-27752 Microsoft Excel Remote Code Execution Vulnerability→

Sensitive data storage in improperly locked memory in Windows Kernel allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-26648 Windows Kernel Elevation of Privilege Vulnerability→

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. Continue reading CVE-2025-27751 Microsoft Excel Remote Code Execution Vulnerability→

Uncontrolled resource consumption in Windows Cryptographic Services allows an unauthorized attacker to deny service over a network. Continue reading CVE-2025-26641 Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability→

Untrusted search path in System Center allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-27743 Microsoft System Center Elevation of Privilege Vulnerability→

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. Continue reading CVE-2025-27749 Microsoft Office Remote Code Execution Vulnerability→

Improper access control in Visual Studio Code allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-20570 Visual Studio Code Elevation of Privilege Vulnerability→