#Security Vulnerability

CVE-2025-27468: Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

Improper privilege management in Windows Secure Kernel Mode allows an unauthorized attacker to elevate privileges locally.

1 month ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #auth #Windows Secure Kernel Mode #Security Vulnerability

CVE-2025-30387: Document Intelligence Studio On-Prem Elevation of Privilege Vulnerability

**What actions does a valid user have to take to be protected against this vulnerability?** Update the image to the latest tag. User data and setting will not be affected by upgrading to the latest tag.

1 month ago

Microsoft Security Response Center

Open in Source

#vulnerability #intel #Azure #Security Vulnerability

CVE-2025-29826: Microsoft Dataverse Elevation of Privilege Vulnerability

Improper handling of insufficient permissions or privileges in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.

1 month ago

Microsoft Security Response Center

Open in Source

#vulnerability #microsoft #auth #Microsoft Dataverse #Security Vulnerability

CVE-2025-30393: Microsoft Excel Remote Code Execution Vulnerability

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

1 month ago

Microsoft Security Response Center

Open in Source

#vulnerability #microsoft #rce #auth #Microsoft Office Excel #Security Vulnerability

CVE-2025-30379: Microsoft Excel Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.