78Articles
8Categories
2025-04-08Date
🚨 CISA KEV 1[−]
8 Apr KEVCISA Adds Two Known Exploited Vulnerabilities to CatalogCISA has added two new vulnerabilities to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2025-30406 Gladinet CentreStack Use of Hard-coded Cryptographic Key Vulnerability CVE-2025-29824 Microsoft Windows Common Log File System (C…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 63[−]
8 AprCVE-2025-26664 Windows Routing and Remote Access Service (RRAS) Information Disclosure VulnerabilityBuffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-26666 Windows Media Remote Code Execution VulnerabilityHeap-based buffer overflow in Windows Media allows an authorized attacker to execute code locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-26667 Windows Routing and Remote Access Service (RRAS) Information Disclosure VulnerabilityExposure of sensitive information to an unauthorized actor in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-26681 Win32k Elevation of Privilege VulnerabilityUse after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-26680 Windows Standards-Based Storage Management Service Denial of Service VulnerabilityUncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-27470 Windows Standards-Based Storage Management Service Denial of Service VulnerabilityUncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-27474 Windows Routing and Remote Access Service (RRAS) Information Disclosure VulnerabilityUse of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-27476 Windows Digital Media Elevation of Privilege VulnerabilityUse after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-27475 Windows Update Stack Elevation of Privilege VulnerabilitySensitive data storage in improperly locked memory in Windows Update Stack allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-27479 Kerberos Key Distribution Proxy Service Denial of Service VulnerabilityInsufficient resource pool in Windows Kerberos allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-27740 Active Directory Certificate Services Elevation of Privilege VulnerabilityWeak authentication in Windows Active Directory Certificate Services allows an authorized attacker to elevate privileges over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-27744 Microsoft Office Elevation of Privilege VulnerabilityImproper access control in Microsoft Office allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-27743 Microsoft System Center Elevation of Privilege VulnerabilityUntrusted search path in System Center allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-29793 Microsoft SharePoint Remote Code Execution VulnerabilityDeserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-29792 Microsoft Office Elevation of Privilege VulnerabilityUse after free in Microsoft Office allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-29794 Microsoft SharePoint Remote Code Execution VulnerabilityImproper authorization in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-29821 Microsoft Dynamics Business Central Information Disclosure VulnerabilityImproper input validation in Dynamics Business Central allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-29823 Microsoft Excel Remote Code Execution VulnerabilityUse after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-24074 Microsoft DWM Core Library Elevation of Privilege VulnerabilityImproper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-21203 Windows Routing and Remote Access Service (RRAS) Information Disclosure VulnerabilityBuffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-24058 Windows DWM Core Library Elevation of Privilege VulnerabilityImproper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-25002 Azure Local Cluster Information Disclosure VulnerabilityInsertion of sensitive information into log file in Azure Local Cluster allows an authorized attacker to disclose information over an adjacent network.MSRC.MICROSOFT.COM
8 AprCVE-2025-26628 Azure Local Cluster Information Disclosure VulnerabilityInsufficiently protected credentials in Azure Local Cluster allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-26639 Windows USB Print Driver Elevation of Privilege VulnerabilityInteger overflow or wraparound in Windows USB Print Driver allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-26635 Windows Hello Security Feature Bypass VulnerabilityWeak authentication in Windows Hello allows an authorized attacker to bypass a security feature over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-26640 Windows Digital Media Elevation of Privilege VulnerabilityUse after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-26644 Windows Hello Spoofing VulnerabilityAutomated recognition mechanism with inadequate detection or handling of adversarial input perturbations in Windows Hello allows an unauthorized attacker to perform spoofing locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-26649 Windows Secure Channel Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Secure Channel allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-26647 Windows Kerberos Elevation of Privilege VulnerabilityImproper input validation in Windows Kerberos allows an unauthorized attacker to elevate privileges over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-26651 Windows Local Session Manager (LSM) Denial of Service VulnerabilityExposed dangerous method or function in Windows Local Session Manager (LSM) allows an authorized attacker to deny service over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-26652 Windows Standards-Based Storage Management Service Denial of Service VulnerabilityUncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-26671 Windows Remote Desktop Services Remote Code Execution VulnerabilityUse after free in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-26674 Windows Media Remote Code Execution VulnerabilityHeap-based buffer overflow in Windows Media allows an authorized attacker to execute code locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-26675 Windows Subsystem for Linux Elevation of Privilege VulnerabilityOut-of-bounds read in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-26676 Windows Routing and Remote Access Service (RRAS) Information Disclosure VulnerabilityBuffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-26678 Windows Defender Application Control Security Feature Bypass VulnerabilityImproper access control in Windows Defender Application Control (WDAC) allows an unauthorized attacker to bypass a security feature locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-27467 Windows Digital Media Elevation of Privilege VulnerabilityUse after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-27485 Windows Standards-Based Storage Management Service Denial of Service VulnerabilityUncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-27480 Windows Remote Desktop Services Remote Code Execution VulnerabilityUse after free in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-27482 Windows Remote Desktop Services Remote Code Execution VulnerabilitySensitive data storage in improperly locked memory in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-27486 Windows Standards-Based Storage Management Service Denial of Service VulnerabilityUncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-27492 Windows Secure Channel Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Secure Channel allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-27490 Windows Bluetooth Service Elevation of Privilege VulnerabilityHeap-based buffer overflow in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-27728 Windows Kernel-Mode Driver Elevation of Privilege VulnerabilityOut-of-bounds read in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-27731 Microsoft OpenSSH for Windows Elevation of Privilege VulnerabilityImproper input validation in OpenSSH for Windows allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-27730 Windows Digital Media Elevation of Privilege VulnerabilityUse after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-27732 Windows Graphics Component Elevation of Privilege VulnerabilitySensitive data storage in improperly locked memory in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-27736 Windows Power Dependency Coordinator Information Disclosure VulnerabilityExposure of sensitive information to an unauthorized actor in Windows Power Dependency Coordinator allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-27739 Windows Kernel Elevation of Privilege VulnerabilityUntrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-29803 Visual Studio Tools for Applications and SQL Server Management Studio Elevation of Privilege VulnerabilityUncontrolled search path element in Visual Studio Tools for Applications and SQL Server Management Studio allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-29800 Microsoft AutoUpdate (MAU) Elevation of Privilege VulnerabilityImproper privilege management in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-29802 Visual Studio Elevation of Privilege VulnerabilityImproper access control in Visual Studio allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-29801 Microsoft AutoUpdate (MAU) Elevation of Privilege VulnerabilityIncorrect default permissions in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-29804 Visual Studio Elevation of Privilege VulnerabilityImproper access control in Visual Studio allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-29808 Windows Cryptographic Services Information Disclosure VulnerabilityUse of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-29805 Outlook for Android Information Disclosure VulnerabilityExposure of sensitive information to an unauthorized actor in Outlook for Android allows an unauthorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
8 AprCVE-2025-29812 DirectX Graphics Kernel Elevation of Privilege VulnerabilityUntrusted pointer dereference in Windows Kernel Memory allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-29819 Windows Admin Center in Azure Portal Information Disclosure VulnerabilityExternal control of file name or path in Azure Portal Windows Admin Center allows an unauthorized attacker to disclose information locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-29811 Windows Mobile Broadband Driver Elevation of Privilege VulnerabilityImproper input validation in Windows Mobile Broadband allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-20570 Visual Studio Code Elevation of Privilege VulnerabilityImproper access control in Visual Studio Code allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-24060 Microsoft DWM Core Library Elevation of Privilege VulnerabilityImproper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-24062 Microsoft DWM Core Library Elevation of Privilege VulnerabilityImproper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
8 AprCVE-2025-26682 ASP.NET Core and Visual Studio Denial of Service VulnerabilityAllocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 4[−]
8 AprCritical Patches Issued for Microsoft Products, April 8, 2025Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, o…CISECURITY.ORG
8 AprExploitation of CLFS zero-day leads to ransomware activityMicrosoft Threat Intelligence Center (MSTIC) and Microsoft Security Response Center (MSRC) have discovered post-compromise exploitation of a newly discovered zero-day vulnerability in the Windows Common Log File System (CLFS) against a small number of targets. Microsoft released …MICROSOFT.COM
8 Apr KEVGoogle fixes two Android zero-day bugs actively exploited by hackersThe most severe security bug can be exploited without user interaction, per Google.TECHCRUNCH.COM
8 AprBoulanger - 2,077,078 breached accountsIn September 2024, French electronics retailer Boulanger suffered a data breach that exposed over 27M rows of data . The data included 2M unique email addresses along with names, physical addresses, phone numbers and latitude and longitude. The data was later publicly published t…HAVEIBEENPWNED.COM
🔥 INCIDENT REPORTING 1[−]
8 Apr1 billion reasons to protect your identity onlineCorporate data breaches are a gateway to identity fraud, but they’re not the only one. Here’s a lowdown on how your personal data could be stolen – and how to make sure it isn’t.WELIVESECURITY.COM
🕵️ THREAT INTELLIGENCE 1[−]
8 AprMeet the Deputy CISOs who help shape Microsoft’s approach to cybersecurityMeet the minds behind how Microsoft prioritizes cybersecurity across every team and employee. Three deputy CISOs share their experiences in cybersecurity and how they are redefining protection. The post Meet the Deputy CISOs who help shape Microsoft’s approach to cybersecurity ap…MICROSOFT.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
8 AprCTEM + CREM: Aligning Your Cybersecurity StrategyCyber threats evolve daily, and organizations need to move beyond traditional security approaches to stay ahead. That’s why Continuous Threat Exposure Management (CTEM), a concept introduced by Gartner, has been gaining traction. CTEM isn’t just another cybersecurity buzzword; it…TRENDMICRO.COM
🎙️ PODCASTS 1[−]
8 AprThe AI Fix #45: The Turing test falls to GPT-4.5In episode 45 of The AI Fix, our hosts discover that ChatGPT is running the world, Mark learns that mattress companies have scientists, Gen Z has nightmares about AI, OpenAI gets a bag, Graham eats too many cheese sandwiches, and too much training makes AIs over-sensitive. Mark r…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 6[−]
8 AprSophos Firewall v21.5 early access is now availableSay hello to great new features and enhancements in v21.5.SOPHOS.COM
8 AprRussian bots hard at work spreading political unrest on Romania’s internetInternet users in Romania are finding their social media posts and online news articles bombarded with comments promoting blatant propaganda, inciting hatred towards the EU and NATO, and support for Vladimir Putin's Russia. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
8 AprWhat happens to your computer when you download pirated software | Kaspersky official blogTales of how people downloaded cracked versions of Microsoft Office, AutoCAD, SketchUp, Ableton, and other programs, and what happened to their computers.KASPERSKY.COM
8 AprA small bug in the signature verification of AOSP OTA packagesA signature verification bypass in a function that verifies the integrity of ZIP archives in the AOSP frameworkQUARKSLAB.COM
8 AprCampaign Targets Amazon EC2 Instance Metadata via SSRFDiscover the latest CVE trends and a new campaign targeting websites hosted in EC2 instances on AWS.F5.COM
8 AprCampaign Targets Amazon EC2 Instance Metadata via SSRFDiscover the latest CVE trends and a new campaign targeting websites hosted in EC2 instances on AWS.F5.COM