Microsoft Security Response Center Blog Alerts

CVE-2025-62457 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

Published December 9, 2025

Out-of-bounds read in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.

CVE-2025-62467 Windows Projected File System Elevation of Privilege Vulnerability

Published December 9, 2025

Integer overflow or wraparound in Windows Projected File System allows an authorized attacker to elevate privileges locally.

CVE-2025-62473 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Published December 9, 2025

Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

CVE-2025-62463 DirectX Graphics Kernel Denial of Service Vulnerability

Published December 9, 2025

Null pointer dereference in Windows DirectX allows an authorized attacker to deny service locally.

CVE-2025-40187 net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce()

Published December 8, 2025

Information published.

CVE-2025-39851 vxlan: Fix NPD when refreshing an FDB entry with a nexthop object

Published December 8, 2025

Information published.

CVE-2025-40195 mount: handle NULL values in mnt_ns_release()

Published December 8, 2025

Information published.

CVE-2025-40200 Squashfs: reject negative file sizes in squashfs_read_inode()

Published December 8, 2025

Information published.

CVE-2025-39805 net: macb: fix unregister_netdev call order in macb_remove()

Published December 8, 2025

Information published.

CVE-2025-40207 media: v4l2-subdev: Fix alloc failure check in v4l2_subdev_call_state_try()

Published December 8, 2025

Information published.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

AbuseIPDB Contributor Badge

© 2025, Network Services Group |  216.73.216.156
Contributor,  Detroit Internet Exchange