CVE-2025-30400 - Use-After-Free in Windows DWM Allows Local Privilege Escalation
Summary:
A newly disclosed vulnerability—CVE-2025-30400—in the Windows Desktop Window Manager (DWM) allows a local, authenticated user to escalate privileges via a "use-after-free&
CVE-2025-30397 - Type Confusion in Microsoft Scripting Engine Explained (With Exploit Details)
In early 2025, security researchers discovered a critical vulnerability tracked as CVE-2025-30397—a type confusion bug in the Microsoft Scripting Engine. This vulnerability makes it
CVE-2025-30394 - Sensitive Data Insecurely Stored in Memory in Remote Desktop Gateway Service Leads to Denial-of-Service Attack
Recently, a significant vulnerability—CVE-2025-30394—was found in the Windows Remote Desktop Gateway (RD Gateway) Service. This weakness comes down to sensitive data (like user
CVE-2025-29974 - Integer Underflow in Windows Kernel Leads to Information Disclosure Over Adjacent Network
Published: June 2024
Severity: High
Vector: Adjacent network
CVSS Score: Pending
Impact: Information Disclosure
What is CVE-2025-29974?
CVE-2025-29974 is a serious integer underflow vulnerability found
CVE-2025-4428 - Remote Code Execution in Ivanti Endpoint Manager Mobile (EPMM) API – Full Exploit Details and Analysis
Published: June 2024 <br>Author: Infosec Explainers
Overview
A new critical vulnerability CVE-2025-4428 has been discovered in Ivanti Endpoint Manager Mobile (EPMM) versions
Episode
00:00:00
00:00:00