CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-49661 – Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-49661
08 Jul 2025 — Untrusted pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49661 • CWE-822: Untrusted Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 26EXPL: 0CVE-2025-49658 – Windows Transport Driver Interface (TDI) Translation Driver Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2025-49658
08 Jul 2025 — Out-of-bounds read in Windows TDX.sys allows an authorized attacker to disclose information locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49658 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-47987 – Credential Security Support Provider Protocol (CredSSP) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-47987
08 Jul 2025 — Heap-based buffer overflow in Windows Cred SSProvider Protocol allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47987 • CWE-122: Heap-based Buffer Overflow CWE-190: Integer Overflow or Wraparound •
CVSS: 8.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-47986 – Universal Print Management Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-47986
08 Jul 2025 — Use after free in Universal Print Management Service allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47986 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-47985 – Windows Event Tracing Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-47985
08 Jul 2025 — Untrusted pointer dereference in Windows Event Tracing allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47985 • CWE-822: Untrusted Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-47984 – Windows GDI Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2025-47984
08 Jul 2025 — Protection mechanism failure in Windows GDI allows an unauthorized attacker to disclose information over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47984 • CWE-693: Protection Mechanism Failure •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-47976 – Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-47976
08 Jul 2025 — Use after free in Windows SSDP Service allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47976 • CWE-416: Use After Free •
CVSS: 8.0EPSS: 0%CPEs: 17EXPL: 0CVE-2025-47972 – Windows Input Method Editor (IME) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-47972
08 Jul 2025 — Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Input Method Editor (IME) allows an authorized attacker to elevate privileges over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47972 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2025-47971 – Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-47971
08 Jul 2025 — Buffer over-read in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47971 • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 0CVE-2025-47159 – Windows Virtualization-Based Security (VBS) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-47159
08 Jul 2025 — Protection mechanism failure in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47159 • CWE-693: Protection Mechanism Failure •