CVE-2025-21380: Azure Marketplace SaaS Resources Information Disclosure Vulnerability

CVE-2025-21385: Microsoft Purview Information Disclosure Vulnerability

CVE-2024-12695: Chromium: CVE-2024-12695 Out of bounds write in V8

CVE-2024-12694: Chromium: CVE-2024-12694 Use after free in Compositing

CVE-2024-12693: Chromium: CVE-2024-12693 Out of bounds memory access in V8

**How could an attacker exploit this vulnerability?**

This vulnerability could be exploited if http requests to .NET 8 RC 1 running on IIS InProcess hosting model are cancelled. Threads counts would increase and an OutOfMemoryException is possible.

Headline

CVE-2023-36038: ASP.NET Core Denial of Service Vulnerability

Microsoft Security Response Center: Latest News