windows security

Microsoft has assigned CVE-2025-59259 to a newly disclosed denial-of-service flaw in the Windows Local Session Manager (LSM) that allows an authorized attacker to crash or otherwise deny service over a network; the issue carries a CVSS v3.1 base score of 6.5 (Medium) and was posted to...

Microsoft’s SharePoint on‑premises ecosystem is at the center of a high‑urgency security crisis: a cluster of remote code execution (RCE) and authentication‑bypass issues — widely tracked under CVE identifiers such as CVE‑2025‑49704, CVE‑2025‑49706 and the emergent “ToolShell” chain...

Microsoft has recorded CVE-2025-55686 as a use‑after‑free (CWE‑416) elevation‑of‑privilege flaw in the Windows PrintWorkflowUserSvc, a privileged print‑stack service, and Microsoft’s advisory plus independent trackers list it with a High (7.0) CVSS v3.1 base score — a local attack that can let a...

Microsoft’s October Patch Tuesday fixed a newly assigned vulnerability, CVE‑2025‑54957, that resides in the Windows Codecs Library and stems from an integer overflow in the Dolby Digital Plus (E‑AC‑3) audio decoder — a parsing error that can produce memory‑corruption conditions and is rated...

Microsoft’s advisory for CVE-2025-59211 documents an information disclosure flaw in the Windows Push Notification Core that allows a low‑privilege, authorized local actor to obtain sensitive data from the system — a vulnerability Microsoft classifies as local, low‑privilege, high‑confidentiality...

Microsoft has published an advisory for CVE-2025-59196: a high‑severity elevation‑of‑privilege vulnerability in the Windows Simple Service Discovery Protocol (SSDP) Service that, according to public trackers, is caused by a race condition allowing an authorized local user to escalate privileges...

Microsoft has published an advisory for a Desktop Window Manager (DWM) elevation‑of‑privilege vulnerability tracked as CVE‑2025‑55681, and the technical profile, exploitation risk, and recommended response follow the familiar pattern seen in recent Windows graphics- and UI‑stack advisories: a...

Microsoft has published an advisory for CVE-2025-55325, a buffer over‑read (information‑disclosure) vulnerability in the Windows Storage Management Provider that allows an authorized local attacker with low privileges to read sensitive memory and potentially harvest secrets — and administrators...

Microsoft’s advisory that CVE-2025-50174 is an elevation‑of‑privilege vulnerability in the Windows Device Association Broker Service confirms a real, exploitable weakness that administrators should treat as high priority for patching and remediation across affected Windows builds. Background /...

Microsoft’s Security Update Guide lists CVE-2025-59204 as an information‑disclosure issue tied to the Windows Management Service, a privileged management‑plane component, and the advisory (as published in Microsoft’s interactive MSRC update guide) frames the vulnerability as presenting an...

The Microsoft Security Update Guide has recorded CVE-2025-55676 as an information‑disclosure flaw in the Windows USB Video Class (UVC) System Driver that can cause an error message to reveal sensitive kernel or system data to a local, authorized actor—making it a local information‑leak...

Microsoft’s security tracking shows a confirmed vulnerability in the Windows PrintWorkflowUserSvc: a use‑after‑free flaw that can be triggered by a local, authorized attacker to gain elevated privileges on a vulnerable host — CVE‑2025‑55689 — and Microsoft has issued updates to address it...

A use‑after‑free vulnerability in the Windows Connected Devices Platform Service (CDPSvc) — tracked as CVE‑2025‑58719 — allows an authorized local attacker to elevate privileges on affected machines by forcing the service to reuse freed memory in a way that corrupts execution flow...

Microsoft has removed the legacy Agere soft‑modem driver (ltmdm64.sys) from supported Windows images after identifying an elevation‑of‑privilege vulnerability tracked as CVE‑2025‑24990, and that removal was shipped in the October 2025 cumulative updates; any fax or analog modem hardware that...

Microsoft has published an advisory for an elevation-of-privilege issue tied to the Microsoft Brokering File System (BFS) family of bugs, and a CVE identifier reported to you (CVE-2025-48004) appears to be part of that broader set of BFS EoP disclosures in 2025 — however, the public record for...

Microsoft’s recent support guidance pulls two threads of its long-running authentication hardening effort into sharp relief: just-in-time administrator elevation on endpoints and aggressive Kerberos protocol tightening across Active Directory estates. Both moves are targeted at the same root...

Microsoft’s Security Update Guide lists a new entry, CVE-2025-55322, that ties a remote code execution (RCE) risk to a component identified as “OmniParser,” but the public record around this CVE remains sparse and unevenly corroborated — meaning defenders must treat the report with caution while...

Defender is present in the taskbar and system tray, and Task Manager says it's running, but when I click on it on the taskbar, it doesn't maximize. I've also tried cycling through windows using Task View, which also shows it's open, but, again, clicking on it does not bring it up like a normal...

Google pushed an emergency Chrome update to address CVE-2025-10585, a type confusion vulnerability in the V8 JavaScript engine that Google says is being actively exploited in the wild — and because Microsoft Edge is Chromium-based, Windows users and enterprises must confirm their Edge builds...

Short answer up front — I can write the 2,000+ word WindowsForum.com feature you asked for, but I need one quick clarification before I start: I can't find any public record for CVE‑2025‑59220. Public trackers and vendor records instead show multiple Windows “Bluetooth Service”...