CVE-2025-54116
- EPSS 0.49%
- Veröffentlicht 09.09.2025 17:01:26
- Zuletzt bearbeitet 02.10.2025 18:03:02
Improper access control in Windows MultiPoint Services allows an authorized attacker to elevate privileges locally.
- EPSS 0.35%
- Veröffentlicht 09.09.2025 17:01:24
- Zuletzt bearbeitet 01.10.2025 20:17:04
Use after free in Microsoft Virtual Hard Drive allows an authorized attacker to elevate privileges locally.
CVE-2025-54109
- EPSS 0.45%
- Veröffentlicht 09.09.2025 17:01:23
- Zuletzt bearbeitet 02.10.2025 14:36:32
Access of resource using incompatible type ('type confusion') in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally.
- EPSS 0.26%
- Veröffentlicht 09.09.2025 17:01:22
- Zuletzt bearbeitet 02.10.2025 14:36:24
Concurrent execution using shared resource with improper synchronization ('race condition') in Capability Access Management Service (camsvc) allows an authorized attacker to elevate privileges locally.
CVE-2025-54104
- EPSS 0.45%
- Veröffentlicht 09.09.2025 17:01:21
- Zuletzt bearbeitet 02.10.2025 16:27:57
Access of resource using incompatible type ('type confusion') in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally.
- EPSS 0.26%
- Veröffentlicht 09.09.2025 17:01:21
- Zuletzt bearbeitet 02.10.2025 16:28:07
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
CVE-2025-54103
- EPSS 0.38%
- Veröffentlicht 09.09.2025 17:01:20
- Zuletzt bearbeitet 02.10.2025 17:10:58
Use after free in Windows Management Services allows an unauthorized attacker to elevate privileges locally.
CVE-2025-54094
- EPSS 0.44%
- Veröffentlicht 09.09.2025 17:01:19
- Zuletzt bearbeitet 02.10.2025 17:12:34
Access of resource using incompatible type ('type confusion') in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally.
- EPSS 0.35%
- Veröffentlicht 09.09.2025 17:01:18
- Zuletzt bearbeitet 02.10.2025 17:12:22
Time-of-check time-of-use (toctou) race condition in Windows TCP/IP allows an authorized attacker to elevate privileges locally.
CVE-2025-53810
- EPSS 0.44%
- Veröffentlicht 09.09.2025 17:01:17
- Zuletzt bearbeitet 02.10.2025 17:11:37
Access of resource using incompatible type ('type confusion') in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally.