Msrc Windows Server 2025 vulnerabilities

CVE-2026-20824 [MEDIUM] CWE-693 Windows Remote Assistance Security Feature Bypass Vulnerability Windows Remote Assistance Security Feature Bypass Vulnerability Description: Protection mechanism failure in Windows Remote Assistance allows an unauthorized attacker to bypass a security feature locally. FAQ: According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do? Exploitation of the vulnerability requires that a user open a specially crafted f

CVE-2026-20932 [MEDIUM] CWE-200 Windows File Explorer Information Disclosure Vulnerability Windows File Explorer Information Disclosure Vulnerability Description: Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally. FAQ: What type of information could be disclosed by this vulnerability? The type of information that could be disclosed if an attacker successfully exploited this vulnerability is an addre

CVE-2026-20939 [MEDIUM] CWE-200 Windows File Explorer Information Disclosure Vulnerability Windows File Explorer Information Disclosure Vulnerability Description: Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally. FAQ: What type of information could be disclosed by this vulnerability? The type of information that could be disclosed if an attacker successfully exploited this vulnerability is the loca

CVE-2026-20835 [MEDIUM] CWE-125 Capability Access Management Service (camsvc) Information Disclosure Vulnerability Capability Access Management Service (camsvc) Information Disclosure Vulnerability Description: Out-of-bounds read in Capability Access Management Service (camsvc) allows an authorized attacker to disclose information locally. FAQ: What type of information could be disclosed by this vulnerability? An attacker who successfully exploited this vulnerability could potentially read the

CVE-2026-20838 [MEDIUM] CWE-209 Windows Kernel Information Disclosure Vulnerability Windows Kernel Information Disclosure Vulnerability Description: Generation of error message containing sensitive information in Windows Kernel allows an authorized attacker to disclose information locally. FAQ: What type of information could be disclosed by this vulnerability? The type of information that could be disclosed if an attacker successfully exploited this vulnerability is Kernel memory read - uninte

CVE-2026-20829 [MEDIUM] CWE-125 TPM Trustlet Information Disclosure Vulnerability TPM Trustlet Information Disclosure Vulnerability Description: Out-of-bounds read in Windows TPM allows an authorized attacker to disclose information locally. FAQ: What type of information could be disclosed by this vulnerability? The type of information that could be disclosed if an attacker successfully exploited this vulnerability is secrets or privileged information belonging to the user of the affected appl

CVE-2026-20818 [MEDIUM] CWE-532 Windows Kernel Information Disclosure Vulnerability Windows Kernel Information Disclosure Vulnerability Description: Insertion of sensitive information into log file in Windows Kernel allows an unauthorized attacker to disclose information locally. FAQ: What type of information could be disclosed by this vulnerability? The type of information that could be disclosed if an attacker successfully exploited this vulnerability is Kernel memory read - unintentional re

CVE-2026-20876 [MEDIUM] CWE-122 Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability Description: Heap-based buffer overflow in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to elevate privileges locally. FAQ: What privileges could be gained by an attacker who successfully exploited this vulnerability? An attacker who successfully expl

CVE-2026-20823 [MEDIUM] CWE-200 Windows File Explorer Information Disclosure Vulnerability Windows File Explorer Information Disclosure Vulnerability Description: Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally. FAQ: According to the CVSS metrics, successful exploitation of this vulnerability could lead to some loss of confidentiality (C:L),but lead to no loss of availability (A:N) and integrity (

CVE-2026-20851 [MEDIUM] CWE-125 Capability Access Management Service (camsvc) Information Disclosure Vulnerability Capability Access Management Service (camsvc) Information Disclosure Vulnerability Description: Out-of-bounds read in Capability Access Management Service (camsvc) allows an unauthorized attacker to disclose information locally. FAQ: What type of information could be disclosed by this vulnerability? The type of information that could be disclosed if an attacker successfully exploi

CVE-2026-21265 [MEDIUM] CWE-1329 Secure Boot Certificate Expiration Security Feature Bypass Vulnerability Secure Boot Certificate Expiration Security Feature Bypass Vulnerability Description: Windows Secure Boot stores Microsoft certificates in the UEFI KEK and DB. These original certificates are approaching expiration, and devices containing affected certificate versions must update them to maintain Secure Boot functionality and avoid compromising security by losing security fixes related to W

CVE-2026-20833 [MEDIUM] CWE-327 Windows Kerberos Information Disclosure Vulnerability Windows Kerberos Information Disclosure Vulnerability Description: Use of a broken or risky cryptographic algorithm in Windows Kerberos allows an authorized attacker to disclose information locally. FAQ: Are there other steps that need to be done to protect from exploitation of this vulnerability? Yes, please see How to manage Kerberos protocol changes related to CVE-2026-20833 for more information about how

CVE-2026-20862 [MEDIUM] CWE-200 Windows Management Services Information Disclosure Vulnerability Windows Management Services Information Disclosure Vulnerability Description: Exposure of sensitive information to an unauthorized actor in Windows Management Services allows an authorized attacker to disclose information locally. FAQ: What type of information could be disclosed by this vulnerability? An attacker who successfully exploited this vulnerability could potentially read portions of proce

CVE-2026-20827 [MEDIUM] CWE-200 Tablet Windows User Interface (TWINUI) Subsystem Information Disclosure Vulnerability Tablet Windows User Interface (TWINUI) Subsystem Information Disclosure Vulnerability Description: Exposure of sensitive information to an unauthorized actor in Tablet Windows User Interface (TWINUI) Subsystem allows an authorized attacker to disclose information locally. FAQ: What type of information could be disclosed by this vulnerability? The type of information that could

CVE-2025-64673 [HIGH] CWE-284 Windows Storage VSP Driver Elevation of Privilege Vulnerability Windows Storage VSP Driver Elevation of Privilege Vulnerability Description: Improper access control in Storvsp.sys Driver allows an authorized attacker to elevate privileges locally. FAQ: What privileges could be gained by an attacker who successfully exploited this vulnerability? An attacker who successfully exploited this vulnerability could gain SYSTEM privileges. Storvsp.sys Driver: Storvsp.sys

CVE-2025-62569 [HIGH] CWE-416 Microsoft Brokering File System Elevation of Privilege Vulnerability Microsoft Brokering File System Elevation of Privilege Vulnerability Description: Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. FAQ: According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability? Successful exploitation of this vulnerability requires an attacker to win a race conditio

CVE-2025-55233 [HIGH] CWE-125 Windows Projected File System Elevation of Privilege Vulnerability Windows Projected File System Elevation of Privilege Vulnerability Description: Out-of-bounds read in Windows Projected File System allows an authorized attacker to elevate privileges locally. FAQ: What privileges could be gained by an attacker who successfully exploited this vulnerability? An attacker who successfully exploited this vulnerability could gain SYSTEM privileges. Windows Projected Fi

CVE-2025-59517 [HIGH] CWE-284 Windows Storage VSP Driver Elevation of Privilege Vulnerability Windows Storage VSP Driver Elevation of Privilege Vulnerability Description: Improper access control in Windows Storage VSP Driver allows an authorized attacker to elevate privileges locally. FAQ: What privileges could be gained by an attacker who successfully exploited this vulnerability? An attacker who successfully exploited this vulnerability could gain SYSTEM privileges. Windows Storage VSP Driv

CVE-2025-64658 [HIGH] CWE-362 Windows File Explorer Elevation of Privilege Vulnerability Windows File Explorer Elevation of Privilege Vulnerability Description: Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Shell allows an authorized attacker to elevate privileges locally. FAQ: According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability? For an attacker to exploit this vulnerability, the

CVE-2025-62572 [HIGH] CWE-125 Application Information Service Elevation of Privilege Vulnerability Application Information Service Elevation of Privilege Vulnerability Description: Out-of-bounds read in Application Information Services allows an authorized attacker to elevate privileges locally. FAQ: What privileges could be gained by an attacker who successfully exploited the vulnerability? A successful exploitation of this vulnerability causes a privilege escalation from Medium to NT AUTHORI