Month: November 2025

Improper authorization in Dynamics OmniChannel SDK Storage Containers allows an unauthorized attacker to elevate privileges over a network. Continue reading CVE-2025-64655 Dynamics OmniChannel SDK Storage Containers Elevation of Privilege Vulnerability→

Information published. Continue reading CVE-2025-59245 Microsoft SharePoint Online Elevation of Privilege Vulnerability→

Information published. Continue reading CVE-2025-62207 Azure Monitor Elevation of Privilege Vulnerability→

Information published. Continue reading CVE-2025-62459 Microsoft Defender Portal Spoofing Vulnerability→

Improper access control in GitHub Copilot and Visual Studio Code allows an authorized attacker to bypass a security feature over a network. Continue reading CVE-2025-64660 GitHub Copilot and Visual Studio Code Security Feature Bypass Vulnerability→

Information published. Continue reading CVE-2025-49752 Azure Bastion Elevation of Privilege Vulnerability→

Stack-based buffer overflow in Software for Open Networking in the Cloud (SONiC) allows an unauthorized attacker to elevate privileges over a network. Continue reading CVE-2025-64657 Azure Application Gateway Elevation of Privilege Vulnerability→

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2021) for more information. Continue reading Chromium: CVE-2025-13224 Type Confusion in V8→