CVE-2025-59216: Windows Graphics Component Elevation of Privilege Vulnerability

CVE-2025-59220: Windows Bluetooth Service Elevation of Privilege Vulnerability

CVE-2025-59215: Windows Graphics Component Elevation of Privilege Vulnerability

CVE-2025-47967: Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability

CVE-2025-49728: Microsoft PC Manager Security Feature Bypass Vulnerability

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Connected Devices Platform Service allows an authorized attacker to deny service locally.

Headline

CVE-2025-54114: Windows Connected Devices Platform Service (Cdpsvc) Denial of Service Vulnerability

Microsoft Security Response Center: Latest News