Microsoft Security Response Center Blog Alerts

CVE-2025-24049 Azure Command Line Integration (CLI) Elevation of Privilege Vulnerability

Posted on Tuesday March 11, 2025

Improper neutralization of special elements used in a command ('command injection') in Azure Command Line Integration (CLI) allows an unauthorized attacker to elevate privileges locally.

 

CVE-2025-24994 Microsoft Windows Cross Device Service Elevation of Privilege Vulnerability

Posted on Tuesday March 11, 2025

Improper access control in Windows Cross Device Service allows an authorized attacker to elevate privileges locally.

 

CVE-2025-24993 Windows NTFS Remote Code Execution Vulnerability

Posted on Tuesday March 11, 2025

Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally.

 

CVE-2025-24992 Windows NTFS Information Disclosure Vulnerability

Posted on Tuesday March 11, 2025

Buffer over-read in Windows NTFS allows an unauthorized attacker to disclose information locally.

 

CVE-2025-24991 Windows NTFS Information Disclosure Vulnerability

Posted on Tuesday March 11, 2025

Out-of-bounds read in Windows NTFS allows an authorized attacker to disclose information locally.

 

CVE-2025-24985 Windows Fast FAT File System Driver Remote Code Execution Vulnerability

Posted on Tuesday March 11, 2025

Integer overflow or wraparound in Windows Fast FAT Driver allows an unauthorized attacker to execute code locally.

 

Page:   123456789...120

Celebrating 35+ Years

Managed Internet Connections

Contact Us

Support Ends for Windows 10 22H2, Windows Server 2012 R2, Exchange 2013, Office 2016