This site uses JavaScript to provide a number of functions, to use this site please enable JavaScript in your browser.

Avvisi di Sicurezza Zscaler

Consulenza sulla sicurezza - gennaio 14, 2025

Zscaler protects against 2 new vulnerabilities for Windows

CVE-2025-21354 – Microsoft Excel Remote Code Execution Vulnerability
CVE-2025-21315 – Microsoft Brokering File System Elevation of Privilege Vulnerability

CVE-2025-21354 – Microsoft Excel Remote Code Execution Vulnerability

Severity: Critical

Subscriptions Required

Advanced Threat Protection
Advanced Cloud Sandbox

Affected Software

Microsoft Office LTSC for Mac 2024
Microsoft Office LTSC 2024 for 64-bit editions
Microsoft Office LTSC 2024 for 32-bit editions
Microsoft Office LTSC 2021 for 32-bit editions
Microsoft Office LTSC 2021 for 64-bit editions
Microsoft Office LTSC for Mac 2021
Microsoft 365 Apps for Enterprise for 64-bit Systems
Microsoft 365 Apps for Enterprise for 32-bit Systems
Microsoft Office 2019 for 64-bit editions
Microsoft Office 2019 for 32-bit editions
Office Online Server

CVE-2025-21315 – Microsoft Brokering File System Elevation of Privilege Vulnerability

Severity: Important

Subscriptions Required

Advanced Threat Protection
Advanced Cloud Sandbox

Affected Software

Windows 11 Version 24H2 for x64-based Systems
Windows 11 Version 24H2 for ARM64-based Systems
Windows Server 2022, 23H2 Edition (Server Core installation)
Windows Server 2025 (Server Core installation)
Windows Server 2025