
CVE-2025-47986 – Universal Print Management Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-47986
08 Jul 2025 — Use after free in Universal Print Management Service allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47986 • CWE-416: Use After Free •

CVE-2025-47985 – Windows Event Tracing Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-47985
08 Jul 2025 — Untrusted pointer dereference in Windows Event Tracing allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47985 • CWE-822: Untrusted Pointer Dereference •

CVE-2025-47984 – Windows GDI Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2025-47984
08 Jul 2025 — Protection mechanism failure in Windows GDI allows an unauthorized attacker to disclose information over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47984 • CWE-693: Protection Mechanism Failure •

CVE-2025-47976 – Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-47976
08 Jul 2025 — Use after free in Windows SSDP Service allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47976 • CWE-416: Use After Free •

CVE-2025-47971 – Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-47971
08 Jul 2025 — Buffer over-read in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47971 • CWE-126: Buffer Over-read •

CVE-2025-49727 – Win32k Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-49727
08 Jul 2025 — Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the win32kfull driver. The issue results from the lack of proper validation of user-supplied data, which can result in a... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49727 • CWE-122: Heap-based Buffer Overflow •

CVE-2025-49732 – Windows Graphics Component Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-49732
08 Jul 2025 — Heap-based buffer overflow in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally. This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the win32kfull driver. The issue results from the lack of proper validation of user-supplied data, which can resu... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49732 • CWE-122: Heap-based Buffer Overflow •

CVE-2025-49742 – Windows Graphics Component Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-49742
08 Jul 2025 — Integer overflow or wraparound in Microsoft Graphics Component allows an authorized attacker to execute code locally. This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the win32kfull driver. The issue results from the lack of proper validation of user-supplied data, which can result... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49742 • CWE-122: Heap-based Buffer Overflow CWE-190: Integer Overflow or Wraparound •

CVE-2025-33073 – Windows SMB Client Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-33073
10 Jun 2025 — Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network. • https://packetstorm.news/files/id/200901 • CWE-284: Improper Access Control •

CVE-2025-33070 – Windows Netlogon Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2025-33070
10 Jun 2025 — Use of uninitialized resource in Windows Netlogon allows an unauthorized attacker to elevate privileges over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-33070 • CWE-908: Use of Uninitialized Resource •