-
Use after free in Windows Win32 Kernel Subsystem allows an authorized attacker to elevate privileges locally. Source link
-
We’re one quarter of the way through 2025 (how did that happen, by the way?) and, with March almost in the rearview mirror, it’s time to find out what’s coming to Disney+ in April. There’s plenty to be excited about, too. Andor season 2 and the latest season of Doctor Who, aka two of the…
-
Improper access control in Windows Cross Device Service allows an authorized attacker to elevate privileges locally. Source link
-
What’s cooler than earbuds that look like they belong in a galaxy far, far away? Obviously, earbuds that also embody the tones of Star Wars, from a lightsaber igniting to a droid’s iconic wail. Now, in the lead-up to Star Wars Celebration, which kicks off on April 18, 2025, in Tokyo, Japan, Star Wars has…
-
Buffer over-read in Windows NTFS allows an unauthorized attacker to disclose information locally. Source link
-
Researchers find more than 150,000 compromised websites The websites carried malware that overlaid them with malicious landing pages Web admins are advised to audit their code Security researchers c/side recently reported on a major website hijacking campaign, in which unnamed threat actors took over 35,000 websites and used them to redirect visitors to malicious pages…
-
Integer overflow or wraparound in Windows Fast FAT Driver allows an unauthorized attacker to execute code locally. Source link
-
Ingress Controllers play a critical role within Kubernetes clusters by enabling the functionality of Ingress resources. Azure Kubernetes Service (AKS) is aware of several security vulnerabilities affecting the Kubernetes ingress-nginx controller, including CVE-2025-1098, CVE-2025-1974, CVE-2025-1097, CVE-2025-24514, and CVE-2025-24513. Customers running this controller on their AKS clusters are advised to update to the latest patched versions…
-
The Backbone One: Xbox Edition has been revealed It’s a special variant Backbone One 2nd Gen mobile controller with an Xbox-inspired design It costs $109.99 and will be available via the Backbone website and Best Buy Drops Gaming peripheral maker Backbone has announced a new special edition variant of its Backbone One 2nd Gen mobile…
-
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information. Source link