There’s one attention-grabbing already exploited vulnerability, he mentioned: CVE-2025-30397. This vulnerability (detailed above by Walters) is barely exploitable if Microsoft Edge is working in “Web Explorer” mode. By default, Edge is just not operating in Web Explorer mode, however there could also be circumstances, particularly on workstations utilized by system directors and builders, the place it’s applicable to allow this mode, Ullrich mentioned. Configuration administration needs to be used to stop this from taking place except it’s particularly required for a specific use case, he mentioned.
“Fortunately,” Ullrich added, “the vulnerability that, for my part, has probably the most ‘potential’ for attackers, CVE-2025-29831, is barely exploitable whereas the RDP service is restarted. Except the attacker is ready to set off a restart, this vulnerability will possible not be exploitable. However it but once more highlights the significance of RDP servers.”
SAP, Zoom patches
Individually, SAP launched 18 Safety Notes starting from crucial authorization points to distant code execution, info disclosure, and cross-site scripting.
