CVE-2025-62466 Windows Client-Side Caching Elevation of Privilege Vulnerability
Published December 9, 2025
Null pointer dereference in Windows Client-Side Caching (CSC) Service allows an authorized attacker to elevate privileges locally.
Microsoft Security Response Center Blog Alerts
CVE-2025-62458 Win32k Elevation of Privilege Vulnerability
Published December 9, 2025
Heap-based buffer overflow in Windows Win32K – GRFX allows an authorized attacker to elevate privileges locally.
CVE-2025-62457 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Published December 9, 2025
Out-of-bounds read in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.
CVE-2025-62467 Windows Projected File System Elevation of Privilege Vulnerability
Published December 9, 2025
Integer overflow or wraparound in Windows Projected File System allows an authorized attacker to elevate privileges locally.
CVE-2025-62473 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
Published December 9, 2025
Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.
CVE-2025-62463 DirectX Graphics Kernel Denial of Service Vulnerability
Published December 9, 2025
Null pointer dereference in Windows DirectX allows an authorized attacker to deny service locally.
CVE-2025-39805 net: macb: fix unregister_netdev call order in macb_remove()
Published December 8, 2025
Information published.
CVE-2025-40207 media: v4l2-subdev: Fix alloc failure check in v4l2_subdev_call_state_try()
Published December 8, 2025
Information published.
CVE-2025-40198 ext4: avoid potential buffer over-read in parse_apply_sb_mount_options()
Published December 8, 2025
Information published.
CVE-2025-39748 bpf: Forget ranges when refining tnum after JSET
Published December 8, 2025
Information published.
