The vulnerability of the “Export to Excel” plugin, which exists due to the lack of protective measures for website structures, allows attackers to carry out XSS attacks.

The vulnerability of the “Export to Excel” plugin exists due to the lack of security measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

The vulnerability of the OpenSearch software package lies in its lack of measures to protect the structure of web pages, allowing attackers to execute arbitrary code.

The vulnerability of the OpenSearch software package is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a perpetrator to execute arbitrary code...

The vulnerability of the software platform for managing execution environments of Apache CloudStack, related to insufficient protection of operational data, allows attackers to compromise the confidentiality and integrity of the protected information.

The vulnerability of the software platform that manages virtual machine environments in Apache CloudStack is related to insufficient protection of operational data. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality and integrity of the protected...

The vulnerability of the Windows Imaging Component (WIC) framework in Windows operating systems allows attackers to disclose protected information.

The vulnerability of the Windows Imaging Component WIC framework in Windows operating systems is related to insufficient protection of service data. Exploiting this vulnerability can allow attackers to disclose protected information...

Enhancing Microsoft 365 security by eliminating high-privilege access

In this blog you will hear directly from Microsoft’s Deputy Chief Information Security Officer CISO for Experiences and Devices, Naresh Kannan, about eliminating high-privileged access across all Microsoft 365 applications. This blog is part of an ongoing series where our Deputy CISOs share their...

CVE-2025-49740

Protection mechanism failure in Windows SmartScreen allows an unauthorized attacker to bypass a security feature over a network...

CVE-2025-48003

Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack...

CVE-2025-48800

Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack...

CVE-2025-47984

Protection mechanism failure in Windows GDI allows an unauthorized attacker to disclose information over a network...

CVE-2025-47159

Protection mechanism failure in Windows Virtualization-Based Security VBS Enclave allows an authorized attacker to elevate privileges locally...

UBUNTU-CVE-2024-36348

A transient execution vulnerability in some AMD processors may allow a user process to infer the control registers speculatively even if UMIP feature is enabled, potentially resulting in information leakage...

2025-07 Cumulative Update for Windows Server 2019 for x64-based Systems (KB5062557)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

2025-07 Cumulative Update for Windows 10 Version 1809 for x64-based Systems (KB5062557)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

2025-07 Cumulative Update for Windows 10 Version 1507 for x64-based Systems (KB5062561)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

2025-07 Dynamic Cumulative Update for Windows 10 Version 21H2 for x86-based Systems (KB5062554)

ComponentUpdate: A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft...

2025-07 Cumulative Update for Windows 10 Version 1507 for x86-based Systems (KB5062561)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

2025-07 Cumulative Update for Windows Server 2016 for x64-based Systems (KB5062560)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

CVE-2025-49740

CVE-2025-49740 is a protection mechanism failure in Windows Defender SmartScreen that can allow an unauthenticated attacker to bypass the SmartScreen protection over the network. This vulnerability affects the SmartScreen security feature in Windows and can lead to executing or delivering untrust...

CVE-2025-48818 Windows BitLocker Security Feature Bypass Vulnerability

...

CVE-2025-48800 Windows BitLocker Security Feature Bypass Vulnerability

...