5 threats in this category
CVE-2025-9491 (aka ZDI-CAN-25373) is a Windows LNK file vulnerability that state actors have quietly exploited since at least 2017. The technique is elegant: attackers embed command-line arguments in …
Category: Vulnerabilities / Microsoft / Microsoft
CISA and NSA issued advisory on hardening on-premises Microsoft Exchange Server instances amid persistent attack surge. The guidance follows CISA's August warning about CVE-2025-53786, a high-severity…
Category: Advisory / Microsoft / Microsoft
Sophos CTU researchers reported active exploitation of a remote code execution flaw (CVE-2025-59287) in Microsoft WSUS. Attackers used a Base64-encoded PowerShell command to exfiltrate Active Director…
Category: Vulnerabilities / Exploitation / Microsoft
Security researchers have reported active exploitation of CVE-2025-59287 in Microsoft Windows Server Update Services (WSUS). The flaw allows unauthenticated remote code execution through deserializati…
Category: Vulnerabilities / Microsoft / Microsoft
Microsoft has patched CVE-2025-55320, an elevation-of-privilege flaw in Configuration Manager that allows SQL injection via the SyncToken method. Successful exploitation may lead to SYSTEM privileges.…
Category: Vulnerabilities & Exploits / Microsoft / Microsoft