Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 8.8 MS:CVE-2025-9866

Chromium: CVE-2025-9866 Inappropriate implementation in Extensions_MS:CVE-2025-9866

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...

N/A N/A MSCVE
MEDIUM 5.4 MS:CVE-2025-9867

Chromium: CVE-2025-9867 Inappropriate implementation in Downloads_MS:CVE-2025-9867

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...

N/A N/A MSCVE
HIGH 7.5 MS:CVE-2025-55238

Dynamics 365 FastTrack Implementation Assets Information Disclosure Vulnerability_MS:CVE-2025-55238

{“lastseen”:”2025-09-05T00:55:52″,”description”:””,”published”:”2025-09-04T07:00:...

N/A N/A MSCVE
MEDIUM 6.5 MS:CVE-2025-55242

Xbox Certification Bug Copilot Djando Information Disclosure Vulnerability_MS:CVE-2025-55242

Exposure of sensitive information to an unauthorized actor in Xbox allows an unauthorized attacker to disclose information over a network.

N/A N/A MSCVE
CRITICAL 9 MS:CVE-2025-55244

Azure Bot Service Elevation of Privilege Vulnerability_MS:CVE-2025-55244

{“lastseen”:”2025-09-05T00:55:52″,”description”:””,”published”:”2025-09-04T07:00:...

N/A N/A MSCVE
CRITICAL 10 MS:CVE-2025-54914

Azure Networking Elevation of Privilege Vulnerability_MS:CVE-2025-54914

{“lastseen”:”2025-09-05T00:55:52″,”description”:””,”published”:”2025-09-04T07:00:...

N/A N/A MSCVE
CRITICAL 9 MS:CVE-2025-55241

Azure Entra Elevation of Privilege Vulnerability_MS:CVE-2025-55241

Azure Entra Elevation of Privilege Vulnerability

N/A N/A MSCVE
HIGH 8.8 MS:CVE-2025-9478

Chromium: CVE-2025-9478 Use after free in ANGLE_MS:CVE-2025-9478

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...

N/A N/A MSCVE
HIGH 7.8 MS:CVE-2025-55230

Windows MBT Transport Driver Elevation of Privilege Vulnerability_MS:CVE-2025-55230

Untrusted pointer dereference in Windows MBT Transport driver allows an authorized attacker to elevate privileges locally.

N/A N/A MSCVE
MEDIUM 5.3 MS:CVE-2025-55229

Windows Certificate Spoofing Vulnerability_MS:CVE-2025-55229

Improper verification of cryptographic signature in Windows Certificates allows an unauthorized attacker to perform spoofing over a network.

N/A N/A MSCVE