CVE-2025-59220: Windows Bluetooth Service Elevation of Privilege Vulnerability

CVE-2025-59216: Windows Graphics Component Elevation of Privilege Vulnerability

CVE-2025-59215: Windows Graphics Component Elevation of Privilege Vulnerability

CVE-2025-47967: Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability

CVE-2025-49728: Microsoft PC Manager Security Feature Bypass Vulnerability

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.

Headline

CVE-2025-59220: Windows Bluetooth Service Elevation of Privilege Vulnerability

Microsoft Security Response Center: Latest News