privilege escalation

Microsoft's advisory for CVE-2025-55678 describes a use‑after‑free defect in the Windows DirectX Graphics Kernel that allows an authenticated local user to escalate privileges on affected systems, and the operational risk is high for multi‑user hosts, VDI/RDP infrastructure, and any service that...

Microsoft’s security tracking shows CVE-2025-55331 as a use‑after‑free (UAF) elevation‑of‑privilege flaw in the Windows PrintWorkflowUserSvc that can let an authorized local user escalate to SYSTEM under the right conditions — Microsoft assigned the issue a High CVSS v3.1 base score (7.0) and...

A new Windows Hyper‑V vulnerability tracked as CVE‑2025‑55328 has been published by Microsoft and classified as an Elevation of Privilege issue caused by a race condition in the Hyper‑V code path. The vendor summary describes the flaw as “concurrent execution using shared resource with improper...

Microsoft has recorded an Elevation of Privilege vulnerability in Visual Studio tracked as CVE‑2025‑55240, a high‑severity bug that allows an authorized local user to gain greater privileges on an affected machine — a classic privilege escalation vector that demands immediate attention from...

A newly reported vulnerability tied to the Windows Connected Devices Platform Service (Cdpsvc) has raised alarms for administrators and defenders: while public trackers and community analyses describe memory‑corruption defects in CDPSvc that can lead to privilege escalation or execution under...

Microsoft has published an advisory for CVE-2025-53717, a high‑impact elevation‑of‑privilege vulnerability in Windows Virtualization‑Based Security (VBS) Enclave that Microsoft characterizes as “reliance on untrusted inputs in a security decision.” The vendor‑published metrics list a CVSS v3.1...

Microsoft’s vulnerability trackers and security aggregators published a new PowerShell elevation‑of‑privilege advisory identified as CVE‑2025‑25004 on October 14, 2025: the flaw is described as an improper access control (CWE‑284) in Microsoft PowerShell that can allow an authorized local...

Microsoft confirmed a new local elevation-of-privilege vulnerability in the Xbox component chain—tracked as CVE-2025-53768—described as a use‑after‑free in the IStorageService implementation that can allow an authorized local user to escalate privileges on an affected host; administrators must...

Microsoft has assigned CVE-2025-55677 to a newly disclosed elevation-of-privilege vulnerability in the Windows Device Association Broker Service: the vendor describes the root cause as an untrusted pointer dereference that lets an authorized local user escalate privileges, and Microsoft has...

A newly cataloged vulnerability, CVE-2025-59290, affects the Windows Bluetooth Service and is described by vendors and trackers as a use‑after‑free (UAF) memory‑corruption flaw that allows an authorized local attacker to elevate privileges on an affected host. A patch was published on October...

Microsoft has published an advisory for CVE-2025-55335 — a high‑severity NTFS elevation‑of‑privilege issue that stems from a memory‑management bug in the Windows NTFS driver and which Microsoft classifies as allowing local privilege escalation; the entry carries a CVSS v3.1 base score of 7.4...

Microsoft's advisory and community trackers point to an elevation‑of‑privilege flaw in the Xbox Gaming Services component that lets a local, low‑privilege user coerce higher‑privilege file operations via unsafe link resolution — a classic CWE‑59 (improper link resolution) pattern — and although...

Microsoft has confirmed an elevation‑of‑privilege flaw in the Desktop Window Manager (DWM) core library tracked as CVE‑2025‑59255, a locally‑triggered memory‑safety issue that can let an authenticated user or process running under a standard account escalate to SYSTEM‑level privileges if...

Microsoft’s SharePoint on‑premises ecosystem is at the center of a high‑urgency security crisis: a cluster of remote code execution (RCE) and authentication‑bypass issues — widely tracked under CVE identifiers such as CVE‑2025‑49704, CVE‑2025‑49706 and the emergent “ToolShell” chain...

Microsoft has published an advisory for CVE-2025-59196: a high‑severity elevation‑of‑privilege vulnerability in the Windows Simple Service Discovery Protocol (SSDP) Service that, according to public trackers, is caused by a race condition allowing an authorized local user to escalate privileges...

Microsoft’s advisory that CVE-2025-50174 is an elevation‑of‑privilege vulnerability in the Windows Device Association Broker Service confirms a real, exploitable weakness that administrators should treat as high priority for patching and remediation across affected Windows builds. Background /...

Microsoft has published an advisory for CVE-2025-55247, a .NET elevation-of-privilege vulnerability rooted in improper link resolution before file access (commonly called “link following”), which can allow an authorized local user to escalate privileges on affected systems; industry trackers...

Microsoft’s security tracking shows a confirmed vulnerability in the Windows PrintWorkflowUserSvc: a use‑after‑free flaw that can be triggered by a local, authorized attacker to gain elevated privileges on a vulnerable host — CVE‑2025‑55689 — and Microsoft has issued updates to address it...

Microsoft’s advisory record for the CVE identifier you supplied (CVE‑2025‑47989) does not resolve to a public MSRC advisory; however, a confirmed elevation‑of‑privilege (EoP) defect in the Azure Connected Machine (Azure Arc / azcmagent) family has been published, tracked in vendor advisories and...

Microsoft’s public advisory footprint around PrintWorkflowUserSvc privilege‑escalation reports continues to grow, but the specific identifier you supplied — CVE‑2025‑55685 — could not be located in authoritative vendor feeds at the time of reporting. That gap matters: the Print Workflow User...