Live
CVE-2025-53779: New Kerberos Path Traversal Bug Opens Door to Privilege Escalation—Patch Now·MSFT +0.1%Windows Admins: CVE-2025-53778 Is a Patch-Now NTLM Privilege Escalation That Threatens Entire Domains·NVDA +3.0%Critical RRAS Vulnerability Leaks Windows Server Memory—Patch CVE-2025-50157 Immediately·GOOGL +1.2%Windows Security App UI Spoofing Flaw CVE-2025-47956 Patched – But Local Attackers Can Still Fake Alerts·AMZN +2.9%CVE-2025-53740: Urgent Patch Needed as Office Use-After-Free RCE Threatens Enterprise Security·MSFT +0.1%Unverified GDI+ RCE Vulnerability CVE-2025-53766 Prompts Urgent Patch Verification Call·NVDA +3.0%CVE-2025-53765: Microsoft Warns of Azure Stack Hub Data Leak Through Authorized Local Access·GOOGL +1.2%Microsoft Issues Advisory for Critical Excel RCE Flaw CVE-2025-53739, Urges Immediate Patching·AMZN +2.9%CVE-2025-53779: New Kerberos Path Traversal Bug Opens Door to Privilege Escalation—Patch Now·MSFT +0.1%Windows Admins: CVE-2025-53778 Is a Patch-Now NTLM Privilege Escalation That Threatens Entire Domains·NVDA +3.0%Critical RRAS Vulnerability Leaks Windows Server Memory—Patch CVE-2025-50157 Immediately·GOOGL +1.2%Windows Security App UI Spoofing Flaw CVE-2025-47956 Patched – But Local Attackers Can Still Fake Alerts·AMZN +2.9%CVE-2025-53740: Urgent Patch Needed as Office Use-After-Free RCE Threatens Enterprise Security·MSFT +0.1%Unverified GDI+ RCE Vulnerability CVE-2025-53766 Prompts Urgent Patch Verification Call·NVDA +3.0%CVE-2025-53765: Microsoft Warns of Azure Stack Hub Data Leak Through Authorized Local Access·GOOGL +1.2%Microsoft Issues Advisory for Critical Excel RCE Flaw CVE-2025-53739, Urges Immediate Patching·AMZN +2.9%

Security Alerts

The latest Security Alerts coverage — news, analysis, and updates from the WindowsNews.AI desk.

12 stories in view AI assisted desk updated 9:29 PM
Latest Most Read Breaking
Sort
Active Directory · Authentication

CVE-2025-53779: New Kerberos Path Traversal Bug Opens Door to Privilege Escalation—Patch Now

Microsoft’s security team has published guidance for CVE-2025-53779, a newly disclosed vulnerability in Windows Kerberos that could let authenticated attackers on the network elevate their...

Advertisement
Asr · Cve-2025-53740

CVE-2025-53740: Urgent Patch Needed as Office Use-After-Free RCE Threatens Enterprise Security

Microsoft has confirmed a critical use-after-free vulnerability in Microsoft Office, tracked as CVE-2025-53740, that could let attackers run arbitrary code when a user opens a maliciously crafted...

SE Security Desk·46w ago
Cve-2025-53766 · Defense In Depth

Unverified GDI+ RCE Vulnerability CVE-2025-53766 Prompts Urgent Patch Verification Call

Microsoft’s Security Update Guide has quietly listed a new vulnerability tracked as CVE-2025-53766, describing a heap-based buffer overflow in the GDI+ graphics library that could allow remote code...

SE Security Desk·46w ago
Azure Local · Azure Stack Hub

CVE-2025-53765: Microsoft Warns of Azure Stack Hub Data Leak Through Authorized Local Access

Microsoft’s Security Response Center has published an advisory for CVE-2025-53765, an information disclosure vulnerability in Azure Stack Hub that permits an attacker with local authorization to...

SE Security Desk·46w ago
Asr · Cve-2025-53739

Microsoft Issues Advisory for Critical Excel RCE Flaw CVE-2025-53739, Urges Immediate Patching

A newly discovered vulnerability in Microsoft Excel, tracked as CVE-2025-53739, could allow attackers to execute arbitrary code on victims' machines simply by convincing them to open a specially...

SE Security Desk·46w ago
Cve-2025-47957 · Cybersecurity

CVE-2025-47957: Decoding Microsoft’s Critical Word Use-After-Free Vulnerability

Microsoft’s security team recently pushed out a fix for a critical vulnerability in Microsoft Word that, if left unpatched, could give attackers a direct path to executing malicious code on a...

SE Security Desk·46w ago
Attack Surface · Cve-2025-53734

CVE-2025-53734: Patch Visio Use-After-Free RCE Before Attackers Exploit Document Flaw

Microsoft has released a security update for a use-after-free vulnerability in Microsoft Visio that allows attackers to execute arbitrary code simply by having a victim open a maliciously crafted...

SE Security Desk·46w ago
Asr · Buffer Over-read

Microsoft Office Buffer Over-Read Bugs Strike Word and Excel: What Enterprises Must Patch Now

Microsoft has rolled out crucial patches for two high-severity buffer over-read vulnerabilities in Microsoft Word and Excel, both enabling local attackers to extract sensitive memory contents. The...

SE Security Desk·46w ago
Asr · Cve-2025-53735

Microsoft Patches Critical Excel Use-After-Free Flaw (CVE-2025-53735) That Executes Code via Malicious Spreadsheets

Microsoft has confirmed a serious use-after-free vulnerability in Microsoft Excel, tracked as CVE-2025-53735, that can allow attackers to execute arbitrary code on a victim’s machine simply by...

SE Security Desk·46w ago