Live
Microsoft Office Users on Alert as CVE-2025-49697 Exposes Systems to Code Execution Attacks·MSFT +0.1%CVE-2025-49693: Microsoft Flags 'More Likely' Exploit for Windows EoP Flaw, Urges Immediate Patching·NVDA +3.0%CVE-2025-49685: Critical Windows Search Bug Lets Attackers Seize Admin Control—Patch Immediately·GOOGL +1.2%Microsoft Ships Patches for Critical Office RCE Bug CVE-2025-49695, Including Office for Mac·AMZN +2.9%Microsoft Patches Improper Access Control Flaw in Windows Storage Driver That Exposes Sensitive Data·MSFT +0.1%CVE-2025-49683: Critical VHDX Vulnerability Exposes Hyper-V and Cloud to RCE Attacks·NVDA +3.0%Patch Now: Windows Performance Recorder Vulnerability (CVE-2025-49680) Allows Local Denial-of-Service·GOOGL +1.2%CVE-2025-49682: Microsoft Patches Windows Media Use-After-Free Flaw Allowing Local Privilege Escalation·AMZN +2.9%Microsoft Office Users on Alert as CVE-2025-49697 Exposes Systems to Code Execution Attacks·MSFT +0.1%CVE-2025-49693: Microsoft Flags 'More Likely' Exploit for Windows EoP Flaw, Urges Immediate Patching·NVDA +3.0%CVE-2025-49685: Critical Windows Search Bug Lets Attackers Seize Admin Control—Patch Immediately·GOOGL +1.2%Microsoft Ships Patches for Critical Office RCE Bug CVE-2025-49695, Including Office for Mac·AMZN +2.9%Microsoft Patches Improper Access Control Flaw in Windows Storage Driver That Exposes Sensitive Data·MSFT +0.1%CVE-2025-49683: Critical VHDX Vulnerability Exposes Hyper-V and Cloud to RCE Attacks·NVDA +3.0%Patch Now: Windows Performance Recorder Vulnerability (CVE-2025-49680) Allows Local Denial-of-Service·GOOGL +1.2%CVE-2025-49682: Microsoft Patches Windows Media Use-After-Free Flaw Allowing Local Privilege Escalation·AMZN +2.9%

Security Alerts

The latest Security Alerts coverage — news, analysis, and updates from the WindowsNews.AI desk.

12 stories in view AI assisted desk updated 10:22 AM
Latest Most Read Breaking
Sort
microsoft_office_users_on.jpg
Buffer Overflow · Cve-2025-49697

Microsoft Office Users on Alert as CVE-2025-49697 Exposes Systems to Code Execution Attacks

A critical remote code execution vulnerability in Microsoft Office, tracked as CVE-2025-49697, has put enterprise and consumer users on high alert, even as official technical details from Microsoft...

Advertisement
microsoft_patches_improper_access.jpg
Access Control · Cve-2025-32722

Microsoft Patches Improper Access Control Flaw in Windows Storage Driver That Exposes Sensitive Data

Microsoft has confirmed and patched a security vulnerability in the Windows Storage Port Driver that could allow attackers with local access to read sensitive information from a targeted system....

SE Security Desk·51w ago
cve_2025_49683_critical.jpg
Attack Surface · Cloud Security

CVE-2025-49683: Critical VHDX Vulnerability Exposes Hyper-V and Cloud to RCE Attacks

A newly patched vulnerability in Microsoft's Virtual Hard Disk version 2 (VHDX) subsystem could allow attackers to execute arbitrary code with elevated privileges, posing severe risks to Hyper-V...

SE Security Desk·51w ago
patch_now_windows_performance.jpg
Cve-2025-49680 · Cybersecurity

Patch Now: Windows Performance Recorder Vulnerability (CVE-2025-49680) Allows Local Denial-of-Service

Microsoft has released a security update to fix a denial-of-service vulnerability in Windows Performance Recorder (WPR) tracked as CVE-2025-49680. The flaw, caused by improper link resolution, could...

SE Security Desk·51w ago
cve_2025_49682_microsoft.jpg
Cyber Defense · Cyber Threats

CVE-2025-49682: Microsoft Patches Windows Media Use-After-Free Flaw Allowing Local Privilege Escalation

Microsoft has patched an elevation-of-privilege vulnerability in Windows Media, tracked as CVE-2025-49682, that could let attackers with local access gain higher system permissions. The flaw,...

SE Security Desk·51w ago
Cve-2025-49681 · Cybersecurity

Critical Windows RRAS Vulnerability Opens Door to Information Disclosure

Critical Windows RRAS Vulnerability Opens Door to Information Disclosure A recently identified security flaw, tracked as CVE-2025-49681, affects the Windows Routing and Remote Access Service (RRAS),...

SE Security Desk·51w ago
Cve-2025-49679 · Cybersecurity

Critical Windows Shell Flaw CVE-2025-49679 Allows Local Privilege Escalation

A critical vulnerability in the Windows Shell, identified as CVE-2025-49679, has been disclosed, posing a significant security risk to users. This flaw, a numeric truncation error, can be exploited...

SE Security Desk·51w ago
Cve-2025-49675 · Cybersecurity

Critical Windows Kernel Streaming Flaw CVE-2025-49675 Enables Full System Takeover

A critical vulnerability has been identified in a core component of the Windows operating system, posing a significant security risk to users. The flaw, cataloged as CVE-2025-49675, affects the...

SE Security Desk·51w ago
Cve-2025-49678 · Cybersecurity

Critical NTFS Vulnerability (CVE-2025-49678) Exposes Windows Systems to Privilege Escalation

Critical NTFS Vulnerability (CVE-2025-49678) Exposes Windows Systems to Privilege Escalation A critical security flaw, identified as CVE-2025-49678, has been discovered in the Windows New Technology...

SE Security Desk·51w ago