resource exhaustion

CVE-2025-54114 (Cdpsvc) — What you need to know now Author: Senior Security Writer, WindowsForum.com Date: September 9, 2025 TL;DR — There’s confusion about the CVE number you provided. Microsoft’s Security Update Guide entry for the Connected Devices Platform Service (Cdpsvc) DoS is widely...

Microsoft has published an advisory for CVE-2025-50172: a vulnerability in the DirectX Graphics Kernel that permits authorized attackers to cause a denial‑of‑service (DoS) by allocating graphics resources without limits or throttling, potentially disrupting hosts and virtualized workloads that...

The Windows Print Spooler has long been a critical and, at times, problematic subsystem of the Windows operating system. Responsible for managing print jobs sent from computers to printers, it operates at a privileged level—meaning its vulnerabilities routinely attract widespread attention from...

A critical new vulnerability—CVE-2025-2403—has brought global attention to Hitachi Energy’s Relion 670/650 series and SAM600-IO, devices central to safeguarding high-voltage infrastructure across the world’s power grids. The flaw, classified as “Allocation of Resources Without Limits or...

Windows Deployment Services (WDS) is a foundational component for many enterprise and organizational IT infrastructures, streamlining the deployment of Windows operating systems over a network. As environments become more dependent on centralized deployment and automation, the security of these...

Windows Lightweight Directory Access Protocol (LDAP) has long served as a core component of enterprise IT infrastructure, underpinning everything from user authentication to directory lookups in countless Active Directory (AD) environments. With the discovery of CVE-2025-29954—a critical denial...

Remote Desktop Gateway (RD Gateway) serves as a vital entry point for secure, remote access to Windows environments, widely implemented by enterprises and service providers alike. Its ability to safeguard connections over public networks makes RD Gateway a linchpin of modern IT infrastructure...

Hitachi Energy’s Service Suite is an integral operational component for organizations across the global energy sector, seamlessly connecting field workforce management with the core tenets of critical infrastructure reliability. However, a sweeping array of cybersecurity vulnerabilities recently...

A quiet yet consequential security flaw recently put Microsoft 365 customers on high alert after researchers disclosed a vulnerability within Microsoft Bookings that exposed organizations to sophisticated cyberattacks through manipulated meeting invitations and calendar events. At the heart of...

Inside the ABB M2M Gateway Vulnerabilities: A Deep Dive into Risk and Remedies In the rapidly evolving landscape of industrial control systems (ICS), security vulnerabilities have become critical concerns—not just for specialized engineers but also for IT administrators and cybersecurity...

Siemens Industrial Control Systems Under Threat: A Deep Dive Into Critical Vulnerabilities and Protections In the landscape of industrial automation and critical manufacturing, Siemens stands tall as a giant with a myriad of products integral to operations worldwide. Yet, recent advisories flag...