#Virtual Hard Disk (VHDX)

CVE-2025-49683: Microsoft Virtual Hard Disk Remote Code Execution Vulnerability

Integer overflow or wraparound in Virtual Hard Disk (VHDX) allows an unauthorized attacker to execute code locally.

2 days ago

#vulnerability #microsoft #rce #auth #Virtual Hard Disk (VHDX)#Security Vulnerability

CVE-2025-47973: Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability

**According to the CVSS metric, the attack vector is local (AV:L) while user interaction is required (UI:R). What does that mean for this vulnerability?** An attacker can trick a local user on a vulnerable system into mounting a specially crafted VHD that would then trigger the vulnerability.

2 days ago

Microsoft Security Response Center

Open in Source

#vulnerability #microsoft #Virtual Hard Disk (VHDX)#Security Vulnerability

CVE-2025-47971: Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability

Buffer over-read in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally.

2 days ago

Microsoft Security Response Center

Open in Source

#vulnerability #microsoft #auth #Virtual Hard Disk (VHDX)#Security Vulnerability

CVE-2025-49689: Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability

Integer overflow or wraparound in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally.