Microsoft Security Response Center Blog Alerts - Network Services Group

CVE-2025-14524 bearer token leak on cross-protocol redirect

Published March 10, 2026

Information published.

CVE-2026-3494 MariaDB Server Audit Plugin Comment Handling Bypass

Published March 10, 2026

Information published.

CVE-2025-10966 missing SFTP host verification with wolfSSH

Published March 10, 2026

Information published.

CVE-2026-22701 filelock Time-of-Check-Time-of-Use (TOCTOU) Symlink Vulnerability in SoftFileLock

Published March 7, 2026

Information published.

CVE-2026-26122 Microsoft ACI Confidential Containers Information Disclosure Vulnerability

Published March 6, 2026

Information published.

CVE-2026-23651 Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability

Published March 6, 2026

Permissive regular expression in Azure Compute Gallery allows an authorized attacker to elevate privileges locally.

CVE-2026-23235 f2fs: fix out-of-bounds access in sysfs attribute read/write

Published March 6, 2026

Information published.

CVE-2026-23234 f2fs: fix to avoid UAF in f2fs_write_end_io()

Published March 6, 2026

Information published.

CVE-2026-26125 Payment Orchestrator Service Elevation of Privilege Vulnerability

Published March 6, 2026

Information published.

CVE-2026-26124 Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability

Published March 6, 2026

Information published.

Privacy | General Terms & Conditions | Speed Test | Image Share | ASN

We use cookies to improve your experience. By continuing to use our site, you accept our use of cookies, revised Privacy Policy and Terms of Use.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.