CVE-2025-47181: Microsoft Edge (Chromium-based) Update Elevation of Privilege Vulnerability

CVE-2025-4609: Chromium: CVE-2025-4609 Incorrect handle provided in unspecified circumstances in Mojo

CVE-2025-4664: Chromium: CVE-2025-4664 Insufficient policy enforcement in Loader

CVE-2025-47161: Microsoft Defender for Endpoint Elevation of Privilege Vulnerability

CVE-2025-24063: Kernel Streaming Service Driver Elevation of Privilege Vulnerability

**According to the CVSS metric, the attack vector is physical (AV:P). What does that mean for this vulnerability?**

To exploit this vulnerability, an attacker needs physical access to the victim's machine.

Headline

CVE-2025-21202: Windows Recovery Environment Agent Elevation of Privilege Vulnerability

Microsoft Security Response Center: Latest News