Allgemein – Seite 451

CVE-2025-55224 Windows Hyper-V Remote Code Execution Vulnerability

Concurrent execution using shared resource with improper synchronization (‚race condition‘) in Windows Win32K – GRFX allows an authorized attacker to execute code locally.

CVE-2025-55245 Xbox Gaming Services Elevation of Privilege Vulnerability

Improper link resolution before file access (‚link following‘) in Xbox allows an authorized attacker to elevate privileges locally.

CVE-2025-55243 Microsoft OfficePlus Spoofing Vulnerability

Exposure of sensitive information to an unauthorized actor in Microsoft Office Plus allows an unauthorized attacker to perform spoofing over a network.

CVE-2025-54911 Windows BitLocker Elevation of Privilege Vulnerability

Use after free in Windows BitLocker allows an authorized attacker to elevate privileges locally.

CVE-2025-54915 Windows Defender Firewall Service Elevation of Privilege Vulnerability

Access of resource using incompatible type (‚type confusion‘) in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally.

CVE-2025-54113 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

CVE-2025-53807 Windows Graphics Component Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization (‚race condition‘) in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.

CVE-2025-54112 Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability

Use after free in Microsoft Virtual Hard Drive allows an authorized attacker to elevate privileges locally.

CVE-2025-55228 Windows Graphics Component Remote Code Execution Vulnerability