Opinions, tips, and news orbiting Microsoft
Out-of-bounds read in Windows File Server allows an unauthorized attacker to disclose information locally. Continue reading CVE-2025-29839 Windows Multiple UNC Provider Driver Information Disclosure Vulnerability
Use after free in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network. Continue reading CVE-2025-29831 Windows Remote Desktop Services Remote Code Execution Vulnerability
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network. Continue reading CVE-2025-29832 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
Time-of-check time-of-use (toctou) race condition in Windows Virtual Machine Bus allows an authorized attacker to execute code over a network. Continue reading CVE-2025-29833 Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network. Continue reading CVE-2025-29836 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network. Continue reading CVE-2025-29835 Windows Remote Access Connection Manager Information Disclosure Vulnerability
Null pointer dereference in Windows Drivers allows an unauthorized attacker to elevate privileges locally. Continue reading CVE-2025-29838 Windows ExecutionContext Driver Elevation of Privilege Vulnerability
Improper link resolution before file access (‘link following’) in Windows Installer allows an authorized attacker to disclose information locally. Continue reading CVE-2025-29837 Windows Installer Information Disclosure Vulnerability