on July 10, 2025 at 7:00 am — CVE-2023-24932 Secure Boot Security Feature Bypass Vulnerability
Microsoft has released July 8, 2025 security updates for all supported versions of Windows that provide new mitigations to protect against this vulnerability; however, these mitigations are not enabled by default. After you have installed the updates, follow the steps outlined in [KB5025885: How to manage the Windows Boot Manager revocations for Secure Boot changes
on July 8, 2025 at 7:00 am — CVE-2025-21195 Azure Service Fabric Runtime Elevation of Privilege Vulnerability
Improper link resolution before file access (‘link following’) in Service Fabric allows an authorized attacker to elevate privileges locally.
on July 8, 2025 at 7:00 am — CVE-2025-47971 Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability
Buffer over-read in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally.
on July 8, 2025 at 7:00 am — CVE-2025-26636 Windows Kernel Information Disclosure Vulnerability
Processor optimization removal or modification of security-critical code in Windows Kernel allows an authorized attacker to disclose information locally.
on July 8, 2025 at 7:00 am — CVE-2025-33054 Remote Desktop Spoofing Vulnerability
Insufficient UI warning of dangerous operations in Remote Desktop Client allows an unauthorized attacker to perform spoofing over a network.
on July 8, 2025 at 7:00 am — CVE-2025-33054 Remote Desktop Spoofing Vulnerability Read More »