November 12, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
CoinMiner Malware – Active IOCs
October 21, 2025Multiple Zyxel Networks Products Vulnerabilities
October 21, 2025CoinMiner Malware – Active IOCs
October 21, 2025Multiple Zyxel Networks Products Vulnerabilities
October 21, 2025
Severity
High
Analysis Summary
CVE-2025-59285 CVSS:7
Deserialization of untrusted data in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.
CVE-2025-59494 CVSS:7.8
Improper access control in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.
CVE-2025-55320 CVSS:6.8
Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Configuration Manager allows an authorized attacker to elevate privileges over an adjacent network.
CVE-2025-59213 CVSS:8.4
Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Configuration Manager allows an unauthorized attacker to elevate privileges locally.
CVE-2025-59200 CVSS:7.7
Concurrent execution using shared resource with improper synchronization ('race condition') in Data Sharing Service Client allows an unauthorized attacker to perform spoofing locally.
CVE-2025-55681 CVSS:7
Out-of-bounds read in Windows DWM allows an authorized attacker to elevate privileges locally.
CVE-2025-55698 CVSS:7.7
Null pointer dereference in Windows DirectX allows an authorized attacker to deny service over a network.
CVE-2025-55678 CVSS:7
Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally.
CVE-2025-58730 CVSS:7
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
CVE-2025-58731 CVSS:7
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
Impact
- Denial of Service
- Gain Access
- Code Execution
- Privilege Escalation
Indicators of Compromise
CVE
- CVE-2025-59285
- CVE-2025-59494
- CVE-2025-55320
- CVE-2025-59213
- CVE-2025-59200
- CVE-2025-55681
- CVE-2025-55698
- CVE-2025-55678
- CVE-2025-58730
- CVE-2025-58731
Affected Vendors
- Microsoft
Affected Products
- Microsoft Windows Server 2022 (Server Core installation)
- Microsoft Azure Monitor Agent
- Microsoft Windows 11 Version 24H2 for x64-based Systems - 24H2
- Microsoft Windows Server 2025
- Microsoft Windows 11 Version 24H2 for ARM64-based Systems
- Microsoft Windows 11 Version 23H2 for x64-based Systems
- Microsoft Windows 11 Version 23H2 for ARM64-based Systems
- Microsoft Windows Server 2025 (Server Core installation)
- Microsoft Windows 11 Version 22H2 for ARM64-based Systems
- Microsoft Windows Server 2022 - 23H2 Edition (Server Core installation)
- Microsoft Configuration Manager 2403
- Microsoft Configuration Manager 2503
- Microsoft Configuration Manager 2409
Remediation
Use Microsoft Automatic Update to apply the appropriate patch for your system, or the Microsoft Security Update Guide to search for available patches.