384 matches found
CVE-2025-64658 Windows File Explorer Elevation of Privilege Vulnerability
...
CVE-2025-64658
CVE-2025-64658 is a Windows Shell elevation-of-privilege vulnerability described as a race condition caused by concurrent execution using a shared resource. The available connected documents confirm impact as local privilege escalation for an attacker with local access and low privileges, requiri...
Windows File Explorer Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Shell allows an authorized attacker to elevate privileges locally...
Windows File Explorer Elevation of Privilege Vulnerability
Use after free in Windows Shell allows an authorized attacker to elevate privileges locally...
📄 Microsoft Windows File Explorer NTLM Hash Disclosure
Microsoft Windows File Explorer in Windows 10 and 11 contains a critical NTLM hash disclosure vulnerability that allows attackers to capture user authentication credentials by exploiting the automatic parsing of .library-ms files from ZIP archives, leading to potential domain compromise through...
Exploit for External Control of File Name or Path in Microsoft
CVE-2025-2405...
November 20, 2025—KB5070312 (OS Build 22631.6276) Preview
November 20, 2025—KB5070312 OS Build 22631.6276 Preview This non-security update for Windows 11, version 23H2 KB5070312, improves functionality, performance, and reliability. To learn more about differences between security updates, optional non-security preview updates, Out-of-band OOB...
Microsoft Windows File Explorer Spoofing Vulnerability (CNVD-2026-10676)
Microsoft Windows File Explorer is a file manager application from Microsoft USA. A spoofing vulnerability exists in Microsoft Windows File Explorer that is caused by the exposure of sensitive information to unauthorized participants in File Explorer. An attacker could exploit the vulnerability t...
CVE-2025-58739
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network...
CVE-2025-59214
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network...
EUVD-2025-34288
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network...
EUVD-2025-34306
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network...
CVE-2025-59214
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network...
CVE-2025-59214
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network...
CVE-2025-58739
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network...
CVE-2025-58739
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network...
CVE-2025-59214 Microsoft Windows File Explorer Spoofing Vulnerability
...
CVE-2025-59214 Microsoft Windows File Explorer Spoofing Vulnerability
...
CVE-2025-59214
CVE-2025-59214 is a Microsoft Windows File Explorer spoofing and information-disclosure vulnerability. Public advisories describe exposure of sensitive information to unauthorized actors, enabling spoofing over a network via Windows File Explorer. Multiple connected sources confirm that Windows F...
CVE-2025-58739
CVE-2025-58739 affects Windows File Explorer and is described as the exposure of sensitive information to an unauthorized actor, enabling spoofing over a network. The CVSS 3.1 base score is 6.5 (Network, Low attack complexity, No privileges, User interaction required) with Confidentiality impact ...