TheWindowsUpdate.com – Page 26 – Opinions, tips, and news orbiting Microsoft

CVE-2025-50159 Remote Access Point-to-Point Protocol (PPP) EAP-TLS Elevation of Privilege Vulnerability

Posted on August 12, 2025 by Syndicated News — No Comments ↓

Use after free in Remote Access Point-to-Point Protocol (PPP) EAP-TLS allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-50159 Remote Access Point-to-Point Protocol (PPP) EAP-TLS Elevation of Privilege Vulnerability→

Posted on August 12, 2025 by Syndicated News — No Comments ↓

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose information over a network. Continue reading CVE-2025-53138 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability→

Posted on August 12, 2025 by Syndicated News — No Comments ↓

Time-of-check time-of-use (toctou) race condition in Windows NTFS allows an unauthorized attacker to disclose information locally. Continue reading CVE-2025-50158 Windows NTFS Information Disclosure Vulnerability→

Posted on August 12, 2025 by Syndicated News — No Comments ↓

Exposure of sensitive information to an unauthorized actor in Windows NT OS Kernel allows an authorized attacker to disclose information locally. Continue reading CVE-2025-53136 NT OS Kernel Information Disclosure Vulnerability→

Posted on August 12, 2025 by Syndicated News — No Comments ↓

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose information over a network. Continue reading CVE-2025-50156 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability→

Posted on August 12, 2025 by Syndicated News — No Comments ↓

Concurrent execution using shared resource with improper synchronization (‘race condition’) in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-53134 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability→

Posted on August 12, 2025 by Syndicated News — No Comments ↓

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network. Continue reading CVE-2025-50154 Microsoft Windows File Explorer Spoofing Vulnerability→

Posted on August 12, 2025 by Syndicated News — No Comments ↓

Concurrent execution using shared resource with improper synchronization (‘race condition’) in Windows Win32K – GRFX allows an authorized attacker to elevate privileges over a network. Continue reading CVE-2025-53132 Win32k Elevation of Privilege Vulnerability→