Live
CVE-2024-0639: Linux SCTP Deadlock Vulnerability Analysis & Windows Security Parallels·MSFT +0.1%Unpatched Linux Kernel Bug in AF_UNIX Sockets Opens Door to Local Host Crashes (CVE-2023-54082)·NVDA +3.0%CVE-2025-62221: Critical Windows cldflt.sys Vulnerability Threatens SYSTEM Privilege Escalation·GOOGL +1.2%Microsoft Patches Critical CVE-2025-58734 Inbox COM Memory Vulnerability·AMZN +2.9%Microsoft PC Manager Vulnerability Leaks Passwords — Patch Available·MSFT +0.1%CVE-2025-54091: Windows Hyper-V Integer Overflow Lets Attackers Gain SYSTEM on Hosts·NVDA +3.0%Microsoft Patches Windows Kernel Memory Leak (CVE-2025-53803) That Facilitates Privilege Escalation·GOOGL +1.2%Microsoft AutoUpdate Vulnerability Lets Attackers Escalate to Root on macOS via Symlink Tricks·AMZN +2.9%CVE-2024-0639: Linux SCTP Deadlock Vulnerability Analysis & Windows Security Parallels·MSFT +0.1%Unpatched Linux Kernel Bug in AF_UNIX Sockets Opens Door to Local Host Crashes (CVE-2023-54082)·NVDA +3.0%CVE-2025-62221: Critical Windows cldflt.sys Vulnerability Threatens SYSTEM Privilege Escalation·GOOGL +1.2%Microsoft Patches Critical CVE-2025-58734 Inbox COM Memory Vulnerability·AMZN +2.9%Microsoft PC Manager Vulnerability Leaks Passwords — Patch Available·MSFT +0.1%CVE-2025-54091: Windows Hyper-V Integer Overflow Lets Attackers Gain SYSTEM on Hosts·NVDA +3.0%Microsoft Patches Windows Kernel Memory Leak (CVE-2025-53803) That Facilitates Privilege Escalation·GOOGL +1.2%Microsoft AutoUpdate Vulnerability Lets Attackers Escalate to Root on macOS via Symlink Tricks·AMZN +2.9%

Local Exploit

The latest Local Exploit coverage — news, analysis, and updates from the WindowsNews.AI desk.

12 stories in view AI assisted desk updated 4:16 AM
Latest Most Read Breaking
Sort
Deadlock · Linux Kernel

CVE-2024-0639: Linux SCTP Deadlock Vulnerability Analysis & Windows Security Parallels

The cybersecurity landscape witnessed another subtle but significant vulnerability disclosure in early 2024 with CVE-2024-0639, a low-to-medium severity locking bug in the Linux kernel's SCTP (Stream...

Advertisement
Cleartext Storage · Credential Leakage

Microsoft PC Manager Vulnerability Leaks Passwords — Patch Available

Microsoft has confirmed a troubling security flaw in PC Manager, its free system maintenance utility for Windows, that stores sensitive information in plain text, leaving credentials and other...

SE Security Desk·43w ago
Cve-2025-54091 · Guest-to-host Escape

CVE-2025-54091: Windows Hyper-V Integer Overflow Lets Attackers Gain SYSTEM on Hosts

A critical integer overflow vulnerability in Windows Hyper-V, tracked as CVE-2025-54091, allows authenticated local attackers to escalate privileges to SYSTEM level on the host machine, Microsoft has...

SE Security Desk·44w ago
Cve-2025-53803 · Cybersecurity

Microsoft Patches Windows Kernel Memory Leak (CVE-2025-53803) That Facilitates Privilege Escalation

Microsoft has released a security update to close a Windows kernel memory disclosure vulnerability that hands attackers a powerful reconnaissance tool for crafting more reliable exploits. Tracked as...

SE Security Desk·44w ago
Cve-2025-55317 · Cybersecurity

Microsoft AutoUpdate Vulnerability Lets Attackers Escalate to Root on macOS via Symlink Tricks

Microsoft has disclosed a fresh local elevation-of-privilege vulnerability in its Microsoft AutoUpdate (MAU) agent that allows an attacker with an existing foothold on a macOS machine to escalate to...

SE Security Desk·44w ago
Cve-2024-28916 · Cwe-59

Patch Now: Xbox Gaming Services CVE-2024-28916 Lets Low-Privilege Attackers Escalate to SYSTEM

A critical elevation-of-privilege vulnerability in Microsoft’s Xbox Gaming Services component, tracked as CVE-2024-28916, has been patched, but not before a public proof-of-concept demonstrated how...

SE Security Desk·44w ago
Cve-2025-55236 · Dxgkrnl

CVE-2025-55236: Windows Graphics Kernel Race Condition Allows Attackers to Escalate to SYSTEM — Patch Now

Microsoft has published advisory CVE-2025-55236, a time-of-check/time-of-use (TOCTOU) race condition in the Windows Graphics Kernel that hands local, authenticated attackers a path to elevate...

SE Security Desk·44w ago
Cve-2025-55228 · Graphics Subsystem

Urgent: Windows Win32K GRFX Race Condition Exploitable for Kernel Code Execution – Patch Now

Microsoft has disclosed a dangerous race condition vulnerability in the Windows graphics subsystem’s Win32K component, tracked as CVE-2025-55228, that allows an authenticated local attacker to gain...

SE Security Desk·44w ago
Applocker · Aslr

Microsoft Urges Immediate Patching for Windows Kernel Privilege-Escalation Flaw CVE-2025-54110

Microsoft has released a security update to patch a high-severity vulnerability in the Windows kernel, tracked as CVE-2025-54110, that allows a local attacker to escalate privileges to SYSTEM level....

SE Security Desk·44w ago
1 2 3 4