CVE-2025-60709

Out-of-bounds read in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally...

CVE-2025-59512

Improper access control in Customer Experience Improvement Program CEIP allows an authorized attacker to elevate privileges locally...

CVE-2025-60719

Untrusted pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

CVE-2025-59511

External control of file name or path in Windows WLAN Service allows an authorized attacker to elevate privileges locally...

CVE-2025-59514

Improper privilege management in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally...

CVE-2025-12870

The a+HRD developed by aEnrich has an Authentication Abuse vulnerability, allowing unauthenticated remote attackers to send crafted packets to obtain administrator access tokens and use them to access the system with elevated privileges...

PT-2025-46711

Name of the Vulnerable Software and Affected Versions Dell Data Lakehouse versions prior to 1.6.0.0 Description Dell Data Lakehouse is affected by an Improper Access Control issue. A remotely accessible attacker with high privileges could potentially exploit this, leading to Elevation of...

CVE-2025-62218

Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Wireless Provisioning System allows an authorized attacker to elevate privileges locally...

CVE-2025-62215

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Kernel allows an authorized attacker to elevate privileges locally...

CVE-2025-60718

Untrusted search path in Windows Administrator Protection allows an authorized attacker to elevate privileges locally...

CVE-2025-60710

Improper link resolution before file access 'link following' in Host Process for Windows Tasks allows an authorized attacker to elevate privileges locally...

CVE-2025-60713

Untrusted pointer dereference in Windows Routing and Remote Access Service RRAS allows an authorized attacker to elevate privileges locally...

CVE-2025-60703

Untrusted pointer dereference in Windows Remote Desktop allows an authorized attacker to elevate privileges locally...

CVE-2025-59506

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows DirectX allows an authorized attacker to elevate privileges locally...

CVE-2025-59505

Double free in Windows Smart Card allows an authorized attacker to elevate privileges locally...

CVE-2025-59507

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Speech allows an authorized attacker to elevate privileges locally...

CVE-2025-59508

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Speech allows an authorized attacker to elevate privileges locally...

CVE-2025-47179

Improper access control in Microsoft Configuration Manager allows an authorized attacker to elevate privileges locally...

CVE-2025-60721

Privilege context switching error in Windows Administrator Protection allows an authorized attacker to elevate privileges locally...

CVE-2025-62213

Technical details about CVE-2025-62213 (affected component, root cause, impact, remediation) are not disclosed in the provided documents; no specifics on exploitability or affected products are available here; monitor for updates.