You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve 2025 62467
About this tag
CVE-2025-62467 is a high-severity privilege escalation vulnerability in the Windows Projected File System (ProjFS), rated 7.8 on the CVSS 3.1 scale. Discovered in December 2025, the flaw stems from an integer overflow or wraparound bug that can be exploited by an authorized local user to gain elevated privileges. ProjFS is a kernel-level file-system projection API that allows user-mode processes to project file systems. Discussions on WindowsForum cover the technical details of the vulnerability, its impact on Windows systems, and potential mitigation steps. Users are advised to apply security updates from Microsoft to address this risk.
Microsoft and multiple vulnerability trackers recorded CVE-2025-62467 on December 9, 2025 — an integer overflow / wraparound bug in the Windows Projected File System (ProjFS) that can be abused by an authorized local user to gain elevated privileges, and which is currently rated High (CVSS 3.1 =...