Headline
CVE-2025-48799: Windows Update Service Elevation of Privilege Vulnerability
Improper link resolution before file access (‘link following’) in Windows Update Service allows an authorized attacker to elevate privileges locally.
Microsoft Security Response Center: Latest News
CVE-2025-48822: Windows Hyper-V Discrete Device Assignment (DDA) Remote Code Execution Vulnerability