Microsoft Security Response Center Blog Alerts

CVE-2025-47962 Windows SDK Elevation of Privilege Vulnerability

Posted on Tuesday June 10, 2025

Improper access control in Windows SDK allows an authorized attacker to elevate privileges locally.

 

CVE-2025-33071 Windows KDC Proxy Service (KPSSVC) Remote Code Execution Vulnerability

Posted on Tuesday June 10, 2025

Use after free in Windows KDC Proxy Service (KPSSVC) allows an unauthorized attacker to execute code over a network.

 

CVE-2025-47956 Windows Security App Spoofing Vulnerability

Posted on Tuesday June 10, 2025

External control of file name or path in Windows Security App allows an authorized attacker to perform spoofing locally.

 

CVE-2025-47955 Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

Posted on Tuesday June 10, 2025

Improper privilege management in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges locally.

 

CVE-2025-47160 Windows Shortcut Files Security Feature Bypass Vulnerability

Posted on Tuesday June 10, 2025

Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.

 

CVE-2025-33075 Windows Installer Elevation of Privilege Vulnerability

Posted on Tuesday June 10, 2025

Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to elevate privileges locally.

 

Page:   1...456789101112...172

Celebrating 35+ Years

Managed Computer Support Services

Contact Us

Support Ends for Windows 10 22H2, Windows Server 2012 R2, Exchange 2013, Office 2016