TheWindowsUpdate.com

Exposure of sensitive information to an unauthorized actor in Windows Kernel allows an authorized attacker to disclose information locally. Continue reading CVE-2025-55683 Windows Kernel Information Disclosure Vulnerability→

Heap-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-59242 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability→

Time-of-check time-of-use (toctou) race condition in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-55680 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability→

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network. Continue reading CVE-2025-59237 Microsoft SharePoint Remote Code Execution Vulnerability→

Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally. Continue reading CVE-2025-55678 DirectX Graphics Kernel Elevation of Privilege Vulnerability→

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. Continue reading CVE-2025-59236 Microsoft Excel Remote Code Execution Vulnerability→

Cleartext storage of sensitive information in Windows Kernel allows an unauthorized attacker to bypass a security feature locally. Continue reading CVE-2025-55334 Windows Kernel Security Feature Bypass Vulnerability→

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally. Continue reading CVE-2025-59235 Microsoft Excel Information Disclosure Vulnerability→