Memory Disclosure
The latest Memory Disclosure coverage — news, analysis, and updates from the WindowsNews.AI desk.
Siemens Flags Serious OpenSSL Flaw in Dozens of Industrial Products — Some Won't Get Patches
Siemens has released a sweeping security advisory covering an OpenSSL vulnerability that crept into more than a hundred industrial networking, automation, and communications products. The flaw,...
Excel CVE-2025-54901: Patch Now for Critical Memory Disclosure, Mac Users Wait
Microsoft has released emergency security updates to patch a significant information-disclosure vulnerability in Microsoft Excel, tracked as CVE-2025-54901, that can expose sensitive process memory...
CVE-2025-53806: Microsoft Patches RRAS Memory Disclosure Flaw in Windows VPN Servers
Microsoft has disclosed CVE-2025-53806, a new information disclosure vulnerability in the Windows Routing and Remote Access Service (RRAS) that allows attackers to read sensitive memory contents from...
Microsoft Emergency Patch for RRAS Memory Leak (CVE-2025-53796) — Update Windows VPN Gateways Now
Microsoft has released a critical security update for Windows Routing and Remote Access Service (RRAS) to plug an information disclosure hole that allows attackers to siphon memory contents over the...
Microsoft Patches Windows Kernel Memory Leak (CVE-2025-53803) That Facilitates Privilege Escalation
Microsoft has released a security update to close a Windows kernel memory disclosure vulnerability that hands attackers a powerful reconnaissance tool for crafting more reliable exploits. Tracked as...
Microsoft Patches Windows Imaging Component Flaw That Could Leak Sensitive Data Through Crafted Images
A critical information disclosure vulnerability in the Windows Imaging Component (WIC) was among the top fixes delivered in Microsoft’s July 2025 Patch Tuesday updates. Tracked as CVE-2025-47980,...
Windows RRAS Out-of-Bounds Read Flaw Exposes Memory to Remote Attackers
Microsoft has confirmed a memory disclosure vulnerability in the Windows Routing and Remote Access Service (RRAS) that could allow unauthenticated attackers to extract sensitive information from...
Patch Now: Siemens BFCClient OpenSSL Flaws Leave Industrial Systems Exposed to Remote Attacks
Siemens has issued an urgent security advisory for its Brownfield Connectivity Client (BFCClient), a critical piece of software that bridges legacy industrial machinery to modern IT systems, after...
Critical RRAS Vulnerability Leaks Windows Server Memory—Patch CVE-2025-50157 Immediately
Microsoft has issued an urgent security update for a memory disclosure flaw in Windows Routing and Remote Access Service (RRAS) that could let attackers remotely extract sensitive data from unpatched...
CVE-2025-53153: Microsoft Patches Information-Disclosure Flaw in Windows RRAS — What Admins Must Do
Microsoft’s April 2025 Patch Tuesday brought a crucial fix for CVE-2025-53153, an information-disclosure vulnerability residing in the Windows Routing and Remote Access Service (RRAS). The...
CVE-2025-53138: Windows Server RRAS Vulnerability Leaks Sensitive Memory
Microsoft's latest security advisory warns of CVE-2025-53138, a newly disclosed information disclosure vulnerability in the Windows Routing and Remote Access Service (RRAS). The flaw, rooted in the...
CVE-2025-26636: Windows Kernel Info Leak Exploits Processor Optimizations to Steal Secrets
Microsoft's April 2025 Patch Tuesday quietly shipped a fix for CVE-2025-26636, a Windows NT kernel information disclosure that lets local attackers extract sensitive memory simply by triggering code...