Microsoft Windows 11 Version 25H2 vulnerabilities

CVE-2026-33838 [HIGH] CWE-415 CVE-2026-33838: Double free in Windows Message Queuing allows an authorized attacker to elevate privileges locally. Double free in Windows Message Queuing allows an authorized attacker to elevate privileges locally.

CVE-2026-20822 [HIGH] CWE-416 CVE-2026-20822: Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges l Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.

CVE-2025-59207 [HIGH] CWE-20 CVE-2025-59207: Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally.

CVE-2025-55677 [HIGH] CWE-822 CVE-2025-55677: Untrusted pointer dereference in Windows Device Association Broker service allows an authorized atta Untrusted pointer dereference in Windows Device Association Broker service allows an authorized attacker to elevate privileges locally.

CVE-2025-55339 [HIGH] CWE-125 CVE-2025-55339: Out-of-bounds read in Windows NDIS allows an authorized attacker to elevate privileges locally. Out-of-bounds read in Windows NDIS allows an authorized attacker to elevate privileges locally.

CVE-2026-23673 [HIGH] CWE-125 CVE-2026-23673: Out-of-bounds read in Windows Resilient File System (ReFS) allows an authorized attacker to elevate Out-of-bounds read in Windows Resilient File System (ReFS) allows an authorized attacker to elevate privileges locally.

CVE-2025-55701 [HIGH] CWE-1287 CVE-2025-55701: Improper validation of specified type of input in Microsoft Windows allows an authorized attacker to Improper validation of specified type of input in Microsoft Windows allows an authorized attacker to elevate privileges locally.

CVE-2025-62462 [HIGH] CWE-126 CVE-2025-62462: Buffer over-read in Windows Projected File System allows an authorized attacker to elevate privilege Buffer over-read in Windows Projected File System allows an authorized attacker to elevate privileges locally.

CVE-2025-62457 [HIGH] CWE-125 CVE-2025-62457: Out-of-bounds read in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevat Out-of-bounds read in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.

CVE-2025-62464 [HIGH] CWE-126 CVE-2025-62464: Buffer over-read in Windows Projected File System allows an authorized attacker to elevate privilege Buffer over-read in Windows Projected File System allows an authorized attacker to elevate privileges locally.

CVE-2025-55233 [HIGH] CWE-125 CVE-2025-55233: Out-of-bounds read in Windows Projected File System allows an authorized attacker to elevate privile Out-of-bounds read in Windows Projected File System allows an authorized attacker to elevate privileges locally.

CVE-2025-62466 [HIGH] CWE-476 CVE-2025-62466: Null pointer dereference in Windows Client-Side Caching (CSC) Service allows an authorized attacker Null pointer dereference in Windows Client-Side Caching (CSC) Service allows an authorized attacker to elevate privileges locally.

CVE-2025-62572 [HIGH] CWE-125 CVE-2025-62572: Out-of-bounds read in Application Information Services allows an authorized attacker to elevate priv Out-of-bounds read in Application Information Services allows an authorized attacker to elevate privileges locally.

CVE-2025-62461 [HIGH] CWE-126 CVE-2025-62461: Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to ele Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to elevate privileges locally.

CVE-2025-62467 [HIGH] CWE-126 CVE-2025-62467: Integer overflow or wraparound in Windows Projected File System allows an authorized attacker to ele Integer overflow or wraparound in Windows Projected File System allows an authorized attacker to elevate privileges locally.

CVE-2025-59511 [HIGH] CWE-73 CVE-2025-59511: External control of file name or path in Windows WLAN Service allows an authorized attacker to eleva External control of file name or path in Windows WLAN Service allows an authorized attacker to elevate privileges locally.

CVE-2025-60721 [HIGH] CWE-270 CVE-2025-60721: Privilege context switching error in Windows Administrator Protection allows an authorized attacker Privilege context switching error in Windows Administrator Protection allows an authorized attacker to elevate privileges locally.

CVE-2026-24290 [HIGH] CWE-284 CVE-2026-24290: Improper access control in Windows Projected File System allows an authorized attacker to elevate pr Improper access control in Windows Projected File System allows an authorized attacker to elevate privileges locally.

CVE-2026-40405 [HIGH] CWE-476 CVE-2026-40405: Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over a ne Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over a network.

CVE-2026-42837 [HIGH] CWE-125 CVE-2026-42837: Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to ele Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to elevate privileges locally.