CVE-2025-4609: Chromium: CVE-2025-4609 Incorrect handle provided in unspecified circumstances in Mojo

CVE-2025-4664: Chromium: CVE-2025-4664 Insufficient policy enforcement in Loader

CVE-2025-47161: Microsoft Defender for Endpoint Elevation of Privilege Vulnerability

CVE-2025-29842: UrlMon Security Feature Bypass Vulnerability

CVE-2025-29841: Universal Print Management Service Elevation of Privilege Vulnerability

**What privileges would an attacker gain by successfully exploiting this vulnerability?**

An attacker who successfully exploited this vulnerability could potentially leak data from the target enclave or execute code within the context of the target enclave.

Headline

CVE-2025-21370: Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability

Microsoft Security Response Center: Latest News