Microsoft has published a terse but important advisory for CVE-2025-55334 — a Windows kernel vulnerability that Microsoft classifies as a Security Feature Bypass caused by cleartext storage of sensitive information in the Windows kernel, and which the community currently rates at CVSS 3.1 base...
CVE-2025-49728 — Microsoft PC Manager: Cleartext storage of sensitive information (Security‑feature bypass, local)
Summary (TL;DR)
Microsoft has assigned CVE‑2025‑49728 to a vulnerability in Microsoft PC Manager where sensitive information is stored in cleartext, enabling a local, unauthorized...
cleartextstorage
credential leakage
credential rotation
cve-2025-49728
data security
endpoint security
incident response
local exploit
local vulnerability
microsoft pc manager
patch management
security bypass
software security
threat detection
windows security
zdi-25-294
