EUVD-2024-37214

Malicious code in bioql PyPI...

CVE-2025-49760 Windows Storage Spoofing Vulnerability

...

Windows Storage Spoofing Vulnerability

External control of file name or path in Windows Storage allows an authorized attacker to perform spoofing over a network...

PT-2025-28631

Name of the Vulnerable Software and Affected Versions Windows versions prior to July 2025 Description A flaw exists in Windows related to the external control of file names or paths within Windows Storage. This issue allows an attacker to perform spoofing attacks over a network. The vulnerability...

CVE-2025-21391

CVE-2025-21391 (Windows Storage Elevation of Privilege) describes a local privilege escalation in Windows Storage. The vulnerability allows an attacker with low privileges and no user interaction to elevate to SYSTEM by exploiting a link-following flaw in Windows Storage (root cause described as ...

CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA has added four vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-40891link is external Zyxel DSL CPE OS Command Injection Vulnerability CVE-2024-40890link is external Zyxel DSL CPE OS Command Injection Vulnerability...

PT-2025-6327

Name of the Vulnerable Software and Affected Versions Microsoft Windows affected versions not specified Description The issue is related to an elevation of privilege vulnerability in Windows Storage. It allows an attacker to elevate their privileges to the level of SYSTEM and delete targeted file...

CVE-2024-43551

Windows Storage Elevation of Privilege Vulnerability...

Microsoft Windows Storage Security Bypass Vulnerability

Microsoft Windows Server 2016 and others are operating systems released by Microsoft Corporation USA. storage is one of the components used to manage file storage. A security bypass vulnerability exists in storage in Microsoft Windows that originates from the program failing to validate integrity...