Month: June 2025

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally. Continue reading CVE-2025-32720 Windows Storage Management Provider Information Disclosure Vulnerability→

Use of uninitialized resource in Windows DWM Core Library allows an authorized attacker to disclose information locally. Continue reading CVE-2025-33052 Windows DWM Core Library Information Disclosure Vulnerability→

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally. Continue reading CVE-2025-32719 Windows Storage Management Provider Information Disclosure Vulnerability→

Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally. Continue reading CVE-2025-47169 Microsoft Word Remote Code Execution Vulnerability→

Integer overflow or wraparound in Windows SMB allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-32718 Windows SMB Client Elevation of Privilege Vulnerability→

Improper neutralization of input during web page generation (‘cross-site scripting’) in Nuance Digital Engagement Platform allows an authorized attacker to perform spoofing over a network. Continue reading CVE-2025-47977 Nuance Digital Engagement Platform Spoofing Vulnerability→

Out-of-bounds read in Windows Media allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-32716 Windows Media Elevation of Privilege Vulnerability→

Microsoft is announcing the availability of the security updates for Microsoft Office 365. Customers running Office 365 should log in ensure you have the latest update to be protected from this vulnerability. See the [Release Notes](https://learn.micro… Continue reading CVE-2025-47176 Microsoft Outlook Remote Code Execution Vulnerability→