CVE-2023-53292 blk-mq: fix NULL dereference on q->elevator in blk_mq_elv_switch_none
Published December 4, 2025
Information published.
Microsoft Security Response Center Blog Alerts
CVE-2025-66031 node-forge ASN.1 Unbounded Recursion
Published December 4, 2025
Information published.
CVE-2025-66030 node-forge ASN.1 OID Integer Truncation
Published December 4, 2025
Information published.
CVE-2025-64660 GitHub Copilot and Visual Studio Code Remote Code Execution Vulnerability
Published November 25, 2025
The following revisions have been made: 1) In the Security Updates table, corrected the impact entries to Remote Code Execution. 2) The CVSS scores have been updated. These are informational changes only. Customers who have successfully installed the update do not need to take any further action.
CVE-2025-54114 Windows Connected Devices Platform Service Elevation of Privilege Vulnerability
Published November 22, 2025
Updated Security Impact values. This is an informational change only.
CVE-2025-64657 Azure Application Gateway Elevation of Privilege Vulnerability
Published November 21, 2025
Stack-based buffer overflow in Software for Open Networking in the Cloud (SONiC) allows an unauthorized attacker to elevate privileges over a network.
CVE-2025-49752 Azure Bastion Elevation of Privilege Vulnerability
Published November 21, 2025
Information published.
CVE-2025-64660 GitHub Copilot and Visual Studio Code Security Feature Bypass Vulnerability
Published November 21, 2025
Improper access control in GitHub Copilot and Visual Studio Code allows an authorized attacker to bypass a security feature over a network.
CVE-2025-62459 Microsoft Defender Portal Spoofing Vulnerability
Published November 21, 2025
Information published.
CVE-2025-62207 Azure Monitor Elevation of Privilege Vulnerability
Published November 21, 2025
Information published.
