CVE-2025-4609: Chromium: CVE-2025-4609 Incorrect handle provided in unspecified circumstances in Mojo

CVE-2025-4664: Chromium: CVE-2025-4664 Insufficient policy enforcement in Loader

CVE-2025-47161: Microsoft Defender for Endpoint Elevation of Privilege Vulnerability

CVE-2025-24063: Kernel Streaming Service Driver Elevation of Privilege Vulnerability

CVE-2025-32707: NTFS Elevation of Privilege Vulnerability

**What type of privileges could an attacker gain through this vulnerability?**

A local, authenticated attacker could gain elevated local system or administrator privileges through a vulnerability in the Win32k.sys driver.

Headline

CVE-2022-21882: Win32k Elevation of Privilege Vulnerability

Microsoft Security Response Center: Latest News