CVE-2025-29824 - Exploring a Use-After-Free Vulnerability in Windows Common Log File System Driver for Local Privilege Escalation
Recently, a new vulnerability (CVE-2025-29824) has been identified in the Windows Common Log File System (CLFS) Driver that allows an authorized attacker to exploit Use-After-Free
CVE-2025-29819 - Exploiting File Path Control in Azure Portal Windows Admin Center
A new security vulnerability, CVE-2025-29819, has been discovered in Microsoft’s Azure Portal, specifically within the Windows Admin Center integration. This vulnerability opens the door
CVE-2025-29809 - Insecure Storage of Sensitive Information in Windows Kerberos—How Local Attackers Can Bypass Security Controls
Windows Kerberos has long been respected as one of the key authentication security technologies in Microsoft ecosystems. However, recent discoveries have exposed a critical flaw:
CVE-2025-29804 - Visual Studio Improper Access Control Lets Attackers Gain Local Privileges
On April 15, 2025, CVE-2025-29804—an improper access control vulnerability—was revealed in several versions of Microsoft Visual Studio. Simply put, this flaw means that
CVE-2025-29800 - Breaking Down the Microsoft AutoUpdate Privilege Escalation—Exploit, Impact, and Prevention
---
In early 2025, a serious security flaw was discovered in Microsoft AutoUpdate (MAU) for macOS. This vulnerability, tracked as CVE-2025-29800, allows an authorized user
Episode
00:00:00
00:00:00