TheWindowsUpdate.com

Improper access control in Azure File Sync allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-53729 Microsoft Azure File Sync Elevation of Privilege Vulnerability→

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally. Continue reading CVE-2025-53732 Microsoft Office Remote Code Execution Vulnerability→

Missing authentication for critical function in Windows StateRepository API allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-53789 Windows StateRepository API Server file Elevation of Privilege Vulnerability→

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. Continue reading CVE-2025-53784 Microsoft Word Remote Code Execution Vulnerability→

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. Continue reading CVE-2025-53740 Microsoft Office Remote Code Execution Vulnerability→

Relative path traversal in Windows Kerberos allows an authorized attacker to elevate privileges over a network. Continue reading CVE-2025-53779 Windows Kerberos Elevation of Privilege Vulnerability→

Access of resource using incompatible type (‘type confusion’) in Microsoft Office Excel allows an unauthorized attacker to execute code locally. Continue reading CVE-2025-53739 Microsoft Excel Remote Code Execution Vulnerability→

Improper authentication in Windows NTLM allows an authorized attacker to elevate privileges over a network. Continue reading CVE-2025-53778 Windows NTLM Elevation of Privilege Vulnerability→