November 17, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Remcos RAT – Active IOCs
October 20, 2025
ICS: Multiple Rockwell Automation Products Vulnerabilities
October 20, 2025
Remcos RAT – Active IOCs
October 20, 2025
ICS: Multiple Rockwell Automation Products Vulnerabilities
October 20, 2025
Severity
High
Analysis Summary
CVE-2025-59236 CVSS:8.4
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2025-59227 CVSS:7.8
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-59234 CVSS:7.8
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-55247 CVSS:7.3
Improper link resolution before file access ('link following') in .NET allows an authorized attacker to elevate privileges locally.
CVE-2025-55248 CVSS:4.8
Inadequate encryption strength in .NET, .NET Framework, Visual Studio allows an authorized attacker to disclose information over a network.
CVE-2025-58724 CVSS:7.8
Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally.
CVE-2025-55315 CVSS:9.9
Inconsistent interpretation of http requests ('http request/response smuggling') in ASP.NET Core allows an authorized attacker to bypass a security feature over a network.
CVE-2025-47989 CVSS:7
Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally.
CVE-2025-55697 CVSS:7.8
Heap-based buffer overflow in Azure Local allows an authorized attacker to elevate privileges locally.
Impact
- Code Execution
- Security Bypass
- Privilege Escalation
- Information Disclosure
Indicators of Compromise
CVE
- CVE-2025-59236
- CVE-2025-59277
- CVE-2025-59234
- CVE-2025-55247
- CVE-2025-55248
- CVE-2025-58724
- CVE-2025-55315
- CVE-2025-47989
- CVE-2025-55697
Affected Vendors
- Microsoft
Affected Products
- Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2
- Microsoft .NET Framework 3.5
- Microsoft .NET Framework 3.5.1
- Microsoft .NET Framework 4.8
- Microsoft Office Online Server
- Microsoft Office LTSC for Mac 2021
- Microsoft Office for Android
- Microsoft ASP.NET Core 8.0
- Microsoft Microsoft 365 Apps for Enterprise for 64-bit Systems
- Microsoft 365 Apps for Enterprise for 32-bit Systems
- Microsoft Office 2019 for 32-bit editions
- Microsoft Office 2019 for 64-bit editions
- Microsoft Office LTSC 2021 for 32-bit editions
- Microsoft Office LTSC 2021 for 64-bit editions
- Microsoft Visual Studio 2022 version 17.10
- Microsoft Windows Server 2025
- Microsoft Office LTSC 2024 for 64-bit editions
- Microsoft Office LTSC 2024 for 32-bit editions
- Microsoft visual studio 2022 version 17.12
- Microsoft Office LTSC for Mac 2024
- Microsoft Visual Studio 2022 version 17.14
- Microsoft .NET Framework 3.0 Service Pack 2
- Microsoft .NET Framework 2.0 Service Pack 2
- Microsoft .NET Framework 3.5 AND 4.8.1
- Microsoft .NET Framework 4.6.2
- Microsoft .NET Framework 3.5 AND 4.7.2
- Microsoft .NET Framework 3.5 AND 4.8
- Microsoft .NET 8.0 installed on Windows
- Microsoft .NET 9.0 installed on Windows
- Microsoft .NET 9.0 installed on Mac OS
- Microsoft .NET 9.0 installed on Linux
- Microsoft .NET 8.0 installed on Mac OS
- Microsoft .NET 8.0 installed on Linux
- Microsoft Arc Enabled Servers - Azure Connected Machine Agent
- Microsoft ASP.NET Core 2.3
- Microsoft ASP.NET Core 9.0
Remediation
Use Microsoft Automatic Update to apply the appropriate patch for your system, or the Microsoft Security Update Guide to search for available patches.