Microsoft Windows 11 25H2 vulnerabilities

CVE-2025-62468 [MEDIUM] CWE-125 CVE-2025-62468: Out-of-bounds read in Windows Defender Firewall Service allows an authorized attacker to disclose in Out-of-bounds read in Windows Defender Firewall Service allows an authorized attacker to disclose information locally.

CVE-2025-64670 [MEDIUM] CWE-200 CVE-2025-64670: Exposure of sensitive information to an unauthorized actor in Microsoft Graphics Component allows an Exposure of sensitive information to an unauthorized actor in Microsoft Graphics Component allows an authorized attacker to disclose information over a network.

CVE-2025-62463 [MEDIUM] CWE-476 CVE-2025-62463: Null pointer dereference in Windows DirectX allows an authorized attacker to deny service locally. Null pointer dereference in Windows DirectX allows an authorized attacker to deny service locally.

CVE-2025-62570 [MEDIUM] CWE-284 CVE-2025-62570: Improper access control in Windows Camera Frame Server Monitor allows an authorized attacker to disc Improper access control in Windows Camera Frame Server Monitor allows an authorized attacker to disclose information locally.

CVE-2025-62465 [MEDIUM] CWE-476 CVE-2025-62465: Null pointer dereference in Windows DirectX allows an authorized attacker to deny service locally. Null pointer dereference in Windows DirectX allows an authorized attacker to deny service locally.

CVE-2025-60724 [CRITICAL] CWE-122 CVE-2025-60724: Heap-based buffer overflow in Microsoft Graphics Component allows an unauthorized attacker to execut Heap-based buffer overflow in Microsoft Graphics Component allows an unauthorized attacker to execute code over a network.

CVE-2025-62217 [HIGH] CWE-362 CVE-2025-62217: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

CVE-2025-59507 [HIGH] CWE-362 CVE-2025-59507: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Speech allows an authorized attacker to elevate privileges locally.

CVE-2025-59505 [HIGH] CWE-415 CVE-2025-59505: Double free in Windows Smart Card allows an authorized attacker to elevate privileges locally. Double free in Windows Smart Card allows an authorized attacker to elevate privileges locally.

CVE-2025-59508 [HIGH] CWE-362 CVE-2025-59508: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Speech allows an authorized attacker to elevate privileges locally.

CVE-2025-60716 [HIGH] CWE-416 CVE-2025-60716: Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally. Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally.

CVE-2025-59506 [HIGH] CWE-362 CVE-2025-59506: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows DirectX allows an authorized attacker to elevate privileges locally.

CVE-2025-60707 [HIGH] CWE-416 CVE-2025-60707: Use after free in Multimedia Class Scheduler Service (MMCSS) allows an authorized attacker to elevat Use after free in Multimedia Class Scheduler Service (MMCSS) allows an authorized attacker to elevate privileges locally.

CVE-2025-60705 [HIGH] CWE-284 CVE-2025-60705: Improper access control in Windows Client-Side Caching (CSC) Service allows an authorized attacker t Improper access control in Windows Client-Side Caching (CSC) Service allows an authorized attacker to elevate privileges locally.

CVE-2025-60703 [HIGH] CWE-822 CVE-2025-60703: Untrusted pointer dereference in Windows Remote Desktop allows an authorized attacker to elevate pri Untrusted pointer dereference in Windows Remote Desktop allows an authorized attacker to elevate privileges locally.

CVE-2025-59511 [HIGH] CWE-73 CVE-2025-59511: External control of file name or path in Windows WLAN Service allows an authorized attacker to eleva External control of file name or path in Windows WLAN Service allows an authorized attacker to elevate privileges locally.

CVE-2025-60717 [HIGH] CWE-416 CVE-2025-60717: Use after free in Windows Broadcast DVR User Service allows an authorized attacker to elevate privil Use after free in Windows Broadcast DVR User Service allows an authorized attacker to elevate privileges locally.

CVE-2025-62452 [HIGH] CWE-122 CVE-2025-62452: Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.

CVE-2025-60719 [HIGH] CWE-822 CVE-2025-60719: Untrusted pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized Untrusted pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

CVE-2025-59512 [HIGH] CWE-284 CVE-2025-59512: Improper access control in Customer Experience Improvement Program (CEIP) allows an authorized attac Improper access control in Customer Experience Improvement Program (CEIP) allows an authorized attacker to elevate privileges locally.