Microsoft Security Response Center Blog Alerts

CVE-2025-62464 Windows Projected File System Elevation of Privilege Vulnerability

Published December 10, 2025

Buffer over-read in Windows Projected File System allows an authorized attacker to elevate privileges locally.

CVE-2025-62454 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

Published December 10, 2025

Heap-based buffer overflow in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.

CVE-2025-55233 Windows Projected File System Elevation of Privilege Vulnerability

Published December 10, 2025

Out-of-bounds read in Windows Projected File System allows an authorized attacker to elevate privileges locally.

CVE-2025-62468 Windows Defender Firewall Service Information Disclosure Vulnerability

Published December 10, 2025

Out-of-bounds read in Windows Defender Firewall Service allows an authorized attacker to disclose information locally.

CVE-2025-62553 Microsoft Excel Remote Code Execution Vulnerability

Published December 10, 2025

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVE-2025-62462 Windows Projected File System Elevation of Privilege Vulnerability

Published December 10, 2025

Buffer over-read in Windows Projected File System allows an authorized attacker to elevate privileges locally.

CVE-2025-62472 Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

Published December 9, 2025

Use of uninitialized resource in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges locally.

CVE-2025-62552 Microsoft Access Remote Code Execution Vulnerability

Published December 9, 2025

Relative path traversal in Microsoft Office Access allows an unauthorized attacker to execute code locally.

CVE-2025-62469 Microsoft Brokering File System Elevation of Privilege Vulnerability

Published December 9, 2025

Concurrent execution using shared resource with improper synchronization (‘race condition’) in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.

CVE-2025-62470 Windows Common Log File System Driver Elevation of Privilege Vulnerability

Published December 9, 2025

Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

CVE-2025-62464 Windows Projected File System Elevation of Privilege Vulnerability

CVE-2025-62454 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

CVE-2025-55233 Windows Projected File System Elevation of Privilege Vulnerability

CVE-2025-62468 Windows Defender Firewall Service Information Disclosure Vulnerability

CVE-2025-62553 Microsoft Excel Remote Code Execution Vulnerability

CVE-2025-62462 Windows Projected File System Elevation of Privilege Vulnerability

CVE-2025-62472 Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

CVE-2025-62552 Microsoft Access Remote Code Execution Vulnerability

CVE-2025-62469 Microsoft Brokering File System Elevation of Privilege Vulnerability

CVE-2025-62470 Windows Common Log File System Driver Elevation of Privilege Vulnerability

Contact Info

Follow Us

Affiliations

More Info