Author Archives: Syndicated News

Concurrent execution using shared resource with improper synchronization (‘race condition’) in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-53807 Windows Graphics Component Elevation of Privilege Vulnerability→

Integer overflow or wraparound in Windows Hyper-V allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-54091 Windows Hyper-V Elevation of Privilege Vulnerability→

Generation of error message containing sensitive information in Windows Kernel allows an authorized attacker to disclose information locally. Continue reading CVE-2025-53803 Windows Kernel Memory Information Disclosure Vulnerability→

Concurrent execution using shared resource with improper synchronization (‘race condition’) in Graphics Kernel allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-55223 DirectX Graphics Kernel Elevation of Privilege Vulnerability→

Improper link resolution before file access (‘link following’) in Xbox allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-55245 Xbox Gaming Services Elevation of Privilege Vulnerability→

Use of uninitialized resource in Windows Imaging Component allows an unauthorized attacker to disclose information locally. Continue reading CVE-2025-53799 Windows Imaging Component Information Disclosure Vulnerability→

Improper restriction of communication channel to intended endpoints in Windows PowerShell allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-49734 PowerShell Direct Elevation of Privilege Vulnerability→

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network. Continue reading CVE-2025-54097 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability→