2 matches found
CVE-2025-33056
Improper access control in Microsoft Local Security Authority Server lsasrv allows an unauthorized attacker to deny service over a network...
CVE-2025-24072
CVE-2025-24072 is a use-after-free vulnerability in Microsoft Local Security Authority Server (lsasrv) that can allow an authorized attacker to locally elevate privileges. The affected component is lsasrv; impact is elevated privileges (local). Connected sources (including NCSC/KB advisories) con...