cbcvebase.

Microsoft Windows 11 Version 25H2 vulnerabilities

617 known vulnerabilities affecting microsoft/windows_11_version_25h2.

Total CVEs
617
CISA KEV
12
actively exploited
Public exploits
10
Exploited in wild
14
Severity breakdown
CRITICAL9HIGH465MEDIUM140LOW3

Vulnerabilities

Page 19 of 31
CVE-2025-62473P3MEDIUMCVSS 6.5≥ 10.0.26200.0, < 10.0.26200.74622025-12-09
CVE-2025-62473 [MEDIUM] CWE-126 CVE-2025-62473: Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.
nvd
CVE-2025-64670P3MEDIUMCVSS 6.5≥ 10.0.26200.0, < 10.0.26200.74622025-12-09
CVE-2025-64670 [MEDIUM] CWE-200 CVE-2025-64670: Exposure of sensitive information to an unauthorized actor in Microsoft Graphics Component allows an Exposure of sensitive information to an unauthorized actor in Microsoft Graphics Component allows an authorized attacker to disclose information over a network.
nvd
CVE-2025-59244P3MEDIUMCVSS 6.5≥ 10.0.26200.0, < 10.0.26200.68992025-10-14
CVE-2025-59244 [MEDIUM] CWE-73 CVE-2025-59244: External control of file name or path in Windows Core Shell allows an unauthorized attacker to perfo External control of file name or path in Windows Core Shell allows an unauthorized attacker to perform spoofing over a network.
nvd
CVE-2026-24285P3HIGHCVSS 7.0≥ 10.0.26200.0, < 10.0.26200.80372026-03-10
CVE-2026-24285 [HIGH] CWE-416 CVE-2026-24285: Use after free in Windows Win32K allows an authorized attacker to elevate privileges locally. Use after free in Windows Win32K allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-20842P3HIGHCVSS 7.0≥ 10.0.26200.0, < 10.0.26200.76232026-01-13
CVE-2026-20842 [HIGH] CWE-416 CVE-2026-20842: Use after free in Windows DWM allows an authorized attacker to elevate privileges locally. Use after free in Windows DWM allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-32073P3HIGHCVSS 7.0≥ 10.0.26200.0, < 10.0.26200.82462026-04-14
CVE-2026-32073 [HIGH] CWE-416 CVE-2026-32073: Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to ele Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-21242P3HIGHCVSS 7.0≥ 10.0.26200.0, < 10.0.26200.78402026-02-10
CVE-2026-21242 [HIGH] CWE-416 CVE-2026-21242: Use after free in Windows Subsystem for Linux allows an authorized attacker to elevate privileges lo Use after free in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-60716P3HIGHCVSS 7.0≥ 10.0.26200.0, < 10.0.26200.71712025-11-11
CVE-2025-60716 [HIGH] CWE-416 CVE-2025-60716: Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally. Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-59202P3HIGHCVSS 7.0≥ 10.0.26200.0, < 10.0.26200.68992025-10-14
CVE-2025-59202 [HIGH] CWE-416 CVE-2025-59202: Use after free in Windows Remote Desktop Services allows an authorized attacker to elevate privilege Use after free in Windows Remote Desktop Services allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-55685P3HIGHCVSS 7.0≥ 10.0.26200.0, < 10.0.26200.68992025-10-14
CVE-2025-55685 [HIGH] CWE-416 CVE-2025-55685: Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges l Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-55689P3HIGHCVSS 7.0≥ 10.0.26200.0, < 10.0.26200.68992025-10-14
CVE-2025-55689 [HIGH] CWE-416 CVE-2025-55689: Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges l Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-55686P3HIGHCVSS 7.0≥ 10.0.26200.0, < 10.0.26200.68992025-10-14
CVE-2025-55686 [HIGH] CWE-416 CVE-2025-55686: Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges l Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-55331P3HIGHCVSS 7.0≥ 10.0.26200.0, < 10.0.26200.68992025-10-14
CVE-2025-55331 [HIGH] CWE-416 CVE-2025-55331: Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges l Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-55690P3HIGHCVSS 7.0≥ 10.0.26200.0, < 10.0.26200.68992025-10-14
CVE-2025-55690 [HIGH] CWE-416 CVE-2025-55690: Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges l Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-23667P3HIGHCVSS 7.0≥ 10.0.26200.0, < 10.0.26200.80372026-03-10
CVE-2026-23667 [HIGH] CWE-416 CVE-2026-23667: Use after free in Broadcast DVR allows an authorized attacker to elevate privileges locally. Use after free in Broadcast DVR allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-62569P3HIGHCVSS 7.0≥ 10.0.26200.0, < 10.0.26200.74622025-12-09
CVE-2025-62569 [HIGH] CWE-416 CVE-2025-62569: Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privilege Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-25170P3HIGHCVSS 7.0≥ 10.0.26200.0, < 10.0.26200.80372026-03-10
CVE-2026-25170 [HIGH] CWE-416 CVE-2026-25170: Use after free in Windows Hyper-V allows an authorized attacker to elevate privileges locally. Use after free in Windows Hyper-V allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-55688P3HIGHCVSS 7.0≥ 10.0.26200.0, < 10.0.26200.68992025-10-14
CVE-2025-55688 [HIGH] CWE-416 CVE-2025-55688: Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges l Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-55684P3HIGHCVSS 7.0≥ 10.0.26200.0, < 10.0.26200.68992025-10-14
CVE-2025-55684 [HIGH] CWE-416 CVE-2025-55684: Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges l Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-55691P3HIGHCVSS 7.0≥ 10.0.26200.0, < 10.0.26200.68992025-10-14
CVE-2025-55691 [HIGH] CWE-416 CVE-2025-55691: Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges l Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
nvd
← Previous19 / 31Next →
Microsoft Windows 11 Version 25H2 vulnerabilities | cvebase