Microsoft - CVE CyberSecurity Database News (Page 4)

Apr 12, 2025 Windows Microsoft Exploit

CVE-2025-32726 - How Improper Access Control in Visual Studio Code Lets Local Attackers Escalate Privileges

A new vulnerability, identified as CVE-2025-32726, was recently discovered in Visual Studio Code (VS Code). This flaw allows a user with limited permissions on a

Apr 12, 2025 Windows Microsoft Exploit SQL

CVE-2025-29803 - How Hackers Elevate Privileges via Uncontrolled Search Path in Visual Studio Tools for Applications & SQL Server Management Studio

--- In early 2025, Microsoft patched a critical vulnerability tracked as CVE-2025-29803. This flaw impacts Visual Studio Tools for Applications (VSTA) and SQL Server Management

Apr 9, 2025 Microsoft API Java Apache

CVE-2025-31672 - Improper Input Validation in Apache POI Leaves OOXML Parsing at Risk

Apache POI is one of the most popular open-source libraries for handling Microsoft Office file formats in Java, especially for reading and writing .xlsx, .docx,

Apr 8, 2025 Microsoft Exploit

CVE-2025-29823 - Use-After-Free in Microsoft Excel — Exploit Details, Code, and How Attackers Can Execute Code Locally

Microsoft Office Excel is ubiquitous in businesses and homes—it’s everywhere. With its popularity comes risk, and every year we see dangerous vulnerabilities. One

Apr 8, 2025 Microsoft Exploit

CVE-2025-29822 - How a List Oversight in Microsoft OneNote Can Let Attackers Slip Through—With Code, Exploit & Details

Cybersecurity researchers are sounding the alarm over a newly disclosed vulnerability: CVE-2025-29822. This flaw, found in Microsoft Office OneNote, lets a local attacker bypass important