CVE-2025-59220: Windows Bluetooth Service Elevation of Privilege Vulnerability

CVE-2025-59216: Windows Graphics Component Elevation of Privilege Vulnerability

CVE-2025-59215: Windows Graphics Component Elevation of Privilege Vulnerability

CVE-2025-47967: Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability

CVE-2025-49728: Microsoft PC Manager Security Feature Bypass Vulnerability

Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.

Headline

CVE-2025-54105: Microsoft Brokering File System Elevation of Privilege Vulnerability

Microsoft Security Response Center: Latest News