#windows

CVE-2025-21229: Windows Digital Media Elevation of Privilege Vulnerability

**According to the CVSS metric, the Attack Vector is Physical (AV:P). What does that mean for this vulnerability?** An attacker needs physical access to the target computer to plug in a malicious USB drive.

4 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #git #Windows Digital Media #Security Vulnerability

CVE-2025-21228: Windows Digital Media Elevation of Privilege Vulnerability

**What privileges could be gained by an attacker who successfully exploited this vulnerability?** An attacker who successfully exploited this vulnerability could gain SYSTEM privileges.

4 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #git #Windows Digital Media #Security Vulnerability

CVE-2025-21227: Windows Digital Media Elevation of Privilege Vulnerability

**What privileges could be gained by an attacker who successfully exploited this vulnerability?** An attacker who successfully exploited this vulnerability could gain SYSTEM privileges.

4 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #git #Windows Digital Media #Security Vulnerability

CVE-2025-21226: Windows Digital Media Elevation of Privilege Vulnerability

4 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #git #Windows Digital Media #Security Vulnerability

CVE-2025-21225: Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability

**According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability?** Successful exploitation of this vulnerability requires an attacker to win a race condition.

4 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #dos #Windows Remote Desktop Services #Security Vulnerability

CVE-2025-21335: Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

**What privileges could be gained by an attacker who successfully exploited this vulnerability?** An attacker who successfully exploited this vulnerability could gain SYSTEM privileges.

4 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #Windows Hyper-V NT Kernel Integration VSP #Security Vulnerability

CVE-2025-21330: Windows Remote Desktop Services Denial of Service Vulnerability

**According to the CVSS metric, successful exploitation of this vulnerability has a high impact on availability (A:H). What does that mean for this vulnerability??** An attacker can send specially crafted packets which could impact availability of the service resulting in Denial of Service (DoS).

4 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #dos #Windows Remote Desktop Services #Security Vulnerability

CVE-2025-21382: Windows Graphics Component Elevation of Privilege Vulnerability

**What privileges could be gained by an attacker who successfully exploited this vulnerability?** An attacker who successfully exploited this vulnerability could gain SYSTEM privileges.

4 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #Microsoft Graphics Component #Security Vulnerability

CVE-2025-21217: Windows NTLM Spoofing Vulnerability

**According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?** The user would have to click on a specially crafted URL to be compromised by the attacker.

4 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #Windows NTLM #Security Vulnerability

CVE-2025-21341: Windows Digital Media Elevation of Privilege Vulnerability

4 months ago

Microsoft Security Response Center

Open in Source

#vulnerability #windows #git #Windows Digital Media #Security Vulnerability

Tag

#windows