Security
Headlines
HeadlinesLatestCVEs

Tag

#auth

CVE-2025-27473: HTTP.sys Denial of Service Vulnerability

Uncontrolled resource consumption in Windows HTTP.sys allows an unauthorized attacker to deny service over a network.

Microsoft Security Response Center
#vulnerability#windows#dos#auth#Windows HTTP.sys#Security Vulnerability
CVE-2025-21197: Windows NTFS Information Disclosure Vulnerability

**What type of information could be disclosed by this vulnerability?** The type of information that could be disclosed if an attacker successfully exploited this vulnerability includes unauthorized access to the file system, specifically file path information.