TheWindowsUpdate.com

Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-58724 Arc Enabled Servers – Azure Connected Machine Agent Elevation of Privilege Vulnerability→

Improper validation of specified type of input in Windows Local Session Manager (LSM) allows an authorized attacker to deny service over a network. Continue reading CVE-2025-59257 Windows Local Session Manager (LSM) Denial of Service Vulnerability→

Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network. Continue reading CVE-2025-58718 Remote Desktop Client Remote Code Execution Vulnerability→

Deserialization of untrusted data in Microsoft Windows Codecs Library allows an unauthorized attacker to execute code locally. Continue reading CVE-2025-54957 MITRE CVE-2025-54957: Integer overflow in Dolby Digital Plus audio decoder→

Exposure of sensitive information to an unauthorized actor in Windows Kernel allows an authorized attacker to disclose information locally. Continue reading CVE-2025-55699 Windows Kernel Information Disclosure Vulnerability→

Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-59255 Windows DWM Core Library Elevation of Privilege Vulnerability→

Heap-based buffer overflow in Azure Local allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-55697 Azure Local Elevation of Privilege Vulnerability→

Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-59254 Microsoft DWM Core Library Elevation of Privilege Vulnerability→