CVE-2025-62457: Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

CVE-2025-62456: Windows Resilient File System (ReFS) Remote Code Execution Vulnerability

CVE-2025-62472: Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

CVE-2025-62470: Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVE-2025-62561: Microsoft Excel Remote Code Execution Vulnerability

Improper neutralization of special elements used in a command ('command injection') in Copilot allows an unauthorized attacker to execute code locally.

Headline

CVE-2025-64671: GitHub Copilot for Jetbrains Remote Code Execution Vulnerability

Microsoft Security Response Center: Latest News