Kaspersky Threats

Description

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, execute arbitrary code, gain privileges, cause denial of service.

Below is a complete list of vulnerabilities:

An information disclosure vulnerability in Windows SMB can be exploited remotely to obtain sensitive information.
A remote code execution vulnerability in Windows Media can be exploited remotely to execute arbitrary code.
An information disclosure vulnerability in Windows Routing and Remote Access Service (RRAS) can be exploited remotely to obtain sensitive information.
An elevation of privilege vulnerability in NTFS can be exploited remotely to gain privileges.
A remote code execution vulnerability in Windows Remote Desktop Services can be exploited remotely to execute arbitrary code.
A denial of service vulnerability in Windows Remote Desktop Gateway (RD Gateway) can be exploited remotely to cause denial of service.
An information disclosure vulnerability in Windows Kernel can be exploited remotely to obtain sensitive information.
A denial of service vulnerability in Windows Hyper-V can be exploited remotely to cause denial of service.
An information disclosure vulnerability in Windows Remote Access Connection Manager can be exploited remotely to obtain sensitive information.
An elevation of privilege vulnerability in Kernel Streaming Service Driver can be exploited remotely to gain privileges.
An elevation of privilege vulnerability in Windows ExecutionContext Driver can be exploited remotely to gain privileges.
A remote code execution vulnerability in Microsoft Virtual Machine Bus (VMBus) can be exploited remotely to execute arbitrary code.
A remote code execution vulnerability in MS-EVEN RPC can be exploited remotely to execute arbitrary code.
A remote code execution vulnerability in Remote Desktop Client can be exploited remotely to execute arbitrary code.
A memory corruption vulnerability in Scripting Engine can be exploited remotely to execute arbitrary code.
A denial of service vulnerability in Windows Deployment Services can be exploited remotely to cause denial of service.
A security feature bypass vulnerability in UrlMon can be exploited remotely to bypass security restrictions.
An elevation of privilege vulnerability in Microsoft DWM Core Library can be exploited remotely to gain privileges.
An elevation of privilege vulnerability in Windows Common Log File System Driver can be exploited remotely to gain privileges.
A denial of service vulnerability in Windows Lightweight Directory Access Protocol (LDAP) can be exploited remotely to cause denial of service.
An elevation of privilege vulnerability in Universal Print Management Service can be exploited remotely to gain privileges.
An elevation of privilege vulnerability in Windows Ancillary Function Driver for WinSock can be exploited remotely to gain privileges.
An elevation of privilege vulnerability in Windows Kernel-Mode Driver can be exploited remotely to gain privileges.
An elevation of privilege vulnerability in Microsoft Brokering File System can be exploited remotely to gain privileges.
An information disclosure vulnerability in Windows Multiple UNC Provider Driver can be exploited remotely to obtain sensitive information.
A denial of service vulnerability in Active Directory Certificate Services (AD CS) can be exploited remotely to cause denial of service.
An elevation of privilege vulnerability in Microsoft Windows Hardware Lab Kit (HLK) can be exploited remotely to gain privileges.
A remote code execution vulnerability in Windows Graphics Component can be exploited remotely to execute arbitrary code.
An information disclosure vulnerability in Windows Trusted Runtime Interface Driver can be exploited remotely to obtain sensitive information.
A denial of service vulnerability in Web Threat Defense (WTD.sys) can be exploited remotely to cause denial of service.
An information disclosure vulnerability in Windows Installer can be exploited remotely to obtain sensitive information.

Original advisories

CVE-2025-29956
CVE-2025-29964
CVE-2025-29830
CVE-2025-29836
CVE-2025-29960
CVE-2025-32707
CVE-2025-29831
CVE-2025-30394
CVE-2025-29974
CVE-2025-29955
CVE-2025-29835
CVE-2025-24063
CVE-2025-29958
CVE-2025-29838
CVE-2025-29833
CVE-2025-29969
CVE-2025-29963
CVE-2025-29967
CVE-2025-29962
CVE-2025-30397
CVE-2025-29957
CVE-2025-29961
CVE-2025-29842
CVE-2025-29840
CVE-2025-30400
CVE-2025-32701
CVE-2025-29959
CVE-2025-29954
CVE-2025-29841
CVE-2025-32709
CVE-2025-27468
CVE-2025-29970
CVE-2025-30385
CVE-2025-29839
CVE-2025-26677
CVE-2025-29832
CVE-2025-32706
CVE-2025-29968
CVE-2025-27488
CVE-2025-30388
CVE-2025-29829
CVE-2025-29971
CVE-2025-29837
CVE-2025-29966

CVE list

CVE-2025-24063
critical
CVE-2025-26677
critical
CVE-2025-27468
high
CVE-2025-27488
high
CVE-2025-29829
high
CVE-2025-29830
high
CVE-2025-29831
critical
CVE-2025-29832
high
CVE-2025-29833
critical
CVE-2025-29835
high
CVE-2025-29836
high
CVE-2025-29837
high
CVE-2025-29838
high
CVE-2025-29839
warning
CVE-2025-29840
critical
CVE-2025-29841
high
CVE-2025-29842
critical
CVE-2025-29954
high
CVE-2025-29955
high
CVE-2025-29956
high
CVE-2025-29957
high
CVE-2025-29958
high
CVE-2025-29959
high
CVE-2025-29960
high
CVE-2025-29961
high
CVE-2025-29962
critical
CVE-2025-29963
critical
CVE-2025-29964
critical
CVE-2025-29966
critical
CVE-2025-29967
critical
CVE-2025-29968
high
CVE-2025-29969
critical
CVE-2025-29970
critical
CVE-2025-29971
critical
CVE-2025-29974
high
CVE-2025-30385
critical
CVE-2025-30388
critical
CVE-2025-30394
high
CVE-2025-30397
critical
CVE-2025-30400
critical
CVE-2025-32701
critical
CVE-2025-32706
critical
CVE-2025-32707
critical
CVE-2025-32709
critical

KB list

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com

Found an inaccuracy in the description of this vulnerability? Let us know!

Multiple vulnerabilities in Microsoft Windows