Headline
CVE-2025-47987: Credential Security Support Provider Protocol (CredSSP) Elevation of Privilege Vulnerability
Heap-based buffer overflow in Windows Cred SSProvider Protocol allows an authorized attacker to elevate privileges locally.
Microsoft Security Response Center: Latest News
CVE-2025-49676: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability