Microsoft Windows 11 Version 25H2 vulnerabilities

CVE-2025-59241 [HIGH] CWE-59 CVE-2025-59241: Improper link resolution before file access ('link following') in Windows Health and Optimized Exper Improper link resolution before file access ('link following') in Windows Health and Optimized Experiences Service allows an authorized attacker to elevate privileges locally.

CVE-2026-33098 [HIGH] CWE-416 CVE-2026-33098: Use after free in Windows Container Isolation FS Filter Driver allows an authorized attacker to elev Use after free in Windows Container Isolation FS Filter Driver allows an authorized attacker to elevate privileges locally.

CVE-2026-45607 [HIGH] CWE-125 CVE-2026-45607: Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally. Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally.

CVE-2026-27919 [HIGH] CWE-822 CVE-2026-27919: Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an author Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.

CVE-2026-20877 [HIGH] CWE-362 CVE-2026-20877: Use after free in Windows Management Services allows an authorized attacker to elevate privileges lo Use after free in Windows Management Services allows an authorized attacker to elevate privileges locally.

CVE-2026-20924 [HIGH] CWE-362 CVE-2026-20924: Use after free in Windows Management Services allows an authorized attacker to elevate privileges lo Use after free in Windows Management Services allows an authorized attacker to elevate privileges locally.

CVE-2025-53150 [HIGH] CWE-362 CVE-2025-53150: Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally. Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.

CVE-2026-20858 [HIGH] CWE-362 CVE-2026-20858: Use after free in Windows Management Services allows an authorized attacker to elevate privileges lo Use after free in Windows Management Services allows an authorized attacker to elevate privileges locally.

CVE-2025-59192 [HIGH] CWE-126 CVE-2025-59192: Buffer over-read in Storport.sys Driver allows an authorized attacker to elevate privileges locally. Buffer over-read in Storport.sys Driver allows an authorized attacker to elevate privileges locally.

CVE-2026-32155 [HIGH] CWE-416 CVE-2026-32155: Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.

CVE-2026-32074 [HIGH] CWE-415 CVE-2026-32074: Double free in Windows Projected File System allows an authorized attacker to elevate privileges loc Double free in Windows Projected File System allows an authorized attacker to elevate privileges locally.

CVE-2026-32078 [HIGH] CWE-416 CVE-2026-32078: Use after free in Windows Projected File System allows an authorized attacker to elevate privileges Use after free in Windows Projected File System allows an authorized attacker to elevate privileges locally.

CVE-2026-32069 [HIGH] CWE-415 CVE-2026-32069: Double free in Windows Projected File System allows an authorized attacker to elevate privileges loc Double free in Windows Projected File System allows an authorized attacker to elevate privileges locally.

CVE-2026-34338 [HIGH] CWE-416 CVE-2026-34338: Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges loca Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally.

CVE-2026-40382 [HIGH] CWE-416 CVE-2026-40382: Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges loca Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally.

CVE-2026-45656 [HIGH] CWE-693 CVE-2026-45656: Protection mechanism failure in Windows UEFI allows an authorized attacker to bypass a security feat Protection mechanism failure in Windows UEFI allows an authorized attacker to bypass a security feature locally.

CVE-2026-32089 [HIGH] CWE-362 CVE-2026-32089: Use after free in Windows Speech Brokered Api allows an authorized attacker to elevate privileges lo Use after free in Windows Speech Brokered Api allows an authorized attacker to elevate privileges locally.

CVE-2026-40409 [HIGH] CWE-197 CVE-2026-40409: Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability

CVE-2026-27916 [HIGH] CWE-416 CVE-2026-27916: Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker t Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.

CVE-2025-64661 [HIGH] CWE-362 CVE-2025-64661: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Shell allows an authorized attacker to elevate privileges locally.