Microsoft has confirmed active exploitation of a critical elevation-of-privilege vulnerability (CVE-2025-24989) in its Power Pages platform, a low-code tool organizations use to build business websites. The vulnerability, which allowed unauthorized attackers to bypass registration controls and escalate network privileges, underscores persistent security challenges in widely adopted cloud services. Microsoft employee Raj Kumar discovered that CVE-2025-24989 […]
The post Microsoft Power Pages 0-Day Vulnerability Exploited in the Wild appeared first on Cyber Security News.
This article has been indexed from Cyber Security News