Cybersecurity
The latest Cybersecurity coverage — news, analysis, and updates from the WindowsNews.AI desk.
Emergency patch released for critical CVE-2025-21329 Windows zone mapping flaw
A newly discovered critical vulnerability in Windows, tracked as CVE-2025-21329, exposes systems to potential security bypass attacks through the MapUrlToZone API. This flaw, affecting multiple...
CVE-2025-21217: Critical NTLM Vulnerability Threatens Windows Security in 2025
CVE-2025-21217: Critical NTLM Vulnerability Threatens Windows Security A newly discovered vulnerability in Windows' NT LAN Manager (NTLM) authentication protocol has sent shockwaves through the...
Patch now: CVE-2025-21403 hits Microsoft On-Premises Data Gateway with 9.1 CVSS rating
CVE-2025-21403: Critical Vulnerability in Microsoft On-Premises Data Gateway Microsoft has issued a critical security alert regarding CVE-2025-21403, a newly discovered vulnerability in the...
Critical RCE flaw CVE-2025-21395 in Microsoft Access lets attackers execute code via malicious database files.
CVE-2025-21395: Microsoft Access Remote Code Execution Vulnerability Explained Microsoft has issued a critical security alert regarding CVE-2025-21395, a newly discovered remote code execution (RCE)...
SharePoint Server faces critical 8.8-severity spoofing flaw CVE-2025-21393 before April patch
Critical CVE-2025-21393 Vulnerability Discovered in Microsoft SharePoint Server Microsoft has issued a critical security advisory regarding CVE-2025-21393, a newly discovered spoofing vulnerability...
Firmware flaw CVE-2024-7344 enables Secure Boot bypass on Howyar industrial PCs.
A newly discovered vulnerability, tracked as CVE-2024-7344, has been identified in certain Howyar Taiwan devices, posing a significant risk to Secure Boot implementations. This firmware-level flaw...
Windows Zero-Day Alert: CVE-2025-21219 Exploits MapUrlToZone for Privilege Escalation
CVE-2025-21219: Understanding the New Windows Security Vulnerability A newly discovered security vulnerability, tracked as CVE-2025-21219, has raised concerns among Windows users and IT...
Critical Microsoft Access RCE Bug Puts Legacy Systems at Risk
A newly discovered vulnerability in Microsoft Access, tracked as CVE-2025-21366, has been classified as critical due to its potential for remote code execution (RCE). This security flaw affects...
CVE-2025-21365: Critical Microsoft Office RCE Vulnerability Threatens Enterprise Security
CVE-2025-21365: New Microsoft Office RCE Vulnerability Risks Exploitation A newly discovered remote code execution (RCE) vulnerability in Microsoft Office, tracked as CVE-2025-21365, has raised...
CVE-2025-21364: Critical Excel Vulnerability Threatens Data Security - What You Need to Know
Microsoft Excel users face a new security threat with the discovery of CVE-2025-21364, a critical vulnerability that could allow attackers to execute malicious code through specially crafted...
CVE-2025-21362: Critical Excel Vulnerability Puts Users at Risk of Remote Code Execution
CVE-2025-21362: Major Excel Vulnerability Exposes Users to RCE Risks A newly discovered vulnerability in Microsoft Excel, tracked as CVE-2025-21362, has raised significant concerns among...
CVE-2025-21357: Critical Remote Code Execution Vulnerability Discovered in Microsoft Outlook
CVE-2025-21357: Critical RCE Vulnerability in Microsoft Outlook Microsoft has disclosed a critical security vulnerability (CVE-2025-21357) affecting all supported versions of Microsoft Outlook that...