Description
Multiple vulnerabilities were found in Microsoft Products (Extended Security Update). Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information, bypass security restrictions, cause denial of service, spoof user interface.
Below is a complete list of vulnerabilities:
- A remote code execution vulnerability in PowerShell can be exploited remotely to execute arbitrary code.
- An elevation of privilege vulnerability in Microsoft Message Queuing (MSMQ) can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Win32k can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows Client-Side Caching can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows Common Log File System Driver can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows Remote Access Connection Manager can be exploited remotely to gain privileges.
- An information disclosure vulnerability in Windows Routing and Remote Access Service (RRAS) can be exploited remotely to obtain sensitive information.
- A remote code execution vulnerability in Windows Routing and Remote Access Service (RRAS) can be exploited remotely to execute arbitrary code.
- A denial of service vulnerability in Windows Hyper-V can be exploited remotely to cause denial of service.
- An elevation of privilege vulnerability in Windows Installer can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Microsoft Exchange Server can be exploited remotely to gain privileges.
- A spoofing vulnerability in Microsoft Exchange Server can be exploited remotely to spoof user interface.
- An elevation of privilege vulnerability in Windows DWM Core Library can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows Projected File System can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows Cloud Files Mini Filter Driver can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows File Explorer can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows Storage VSP Driver can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Windows Shell can be exploited remotely to gain privileges.
- An information disclosure vulnerability in Windows DirectX can be exploited remotely to obtain sensitive information.
- A denial of service vulnerability in DirectX Graphics Kernel can be exploited remotely to cause denial of service.
- An elevation of privilege vulnerability in DirectX Graphics Kernel can be exploited remotely to gain privileges.
Fiches de renseignement originales
- CVE-2025-62455
- CVE-2025-62472
- CVE-2025-62567
- CVE-2025-62458
- CVE-2025-62474
- CVE-2025-62470
- CVE-2025-64667
- CVE-2025-62571
- CVE-2025-64666
- CVE-2025-62473
- CVE-2025-62549
- CVE-2025-64678
- CVE-2025-54100
- CVE-2025-64679
- CVE-2025-64680
- CVE-2025-62464
- CVE-2025-62221
- CVE-2025-62457
- CVE-2025-64658
- CVE-2025-62461
- CVE-2025-64673
- CVE-2025-64661
- CVE-2025-64670
- CVE-2025-62462
- CVE-2025-59517
- CVE-2025-62454
- CVE-2025-62467
- CVE-2025-62463
- CVE-2025-55233
- CVE-2025-59516
- CVE-2025-62565
- CVE-2025-62573
Exploitation
Public exploits exist for this vulnerability.
Produits associés
- Microsoft-Windows
- Microsoft-Windows-Server
- Microsoft-Windows-Server-2012
- Microsoft-Windows-Server-2008
- Microsoft-Exchange-Server
- Microsoft-Windows-10
- Microsoft-Windows-11
Liste CVE
- CVE-2025-54100 critical
- CVE-2025-55233 critical
- CVE-2025-59516 critical
- CVE-2025-59517 critical
- CVE-2025-62221 critical
- CVE-2025-62454 critical
- CVE-2025-62455 critical
- CVE-2025-62457 critical
- CVE-2025-62458 critical
- CVE-2025-62461 critical
- CVE-2025-62462 critical
- CVE-2025-62463 high
- CVE-2025-62464 critical
- CVE-2025-62466 critical
- CVE-2025-62467 critical
- CVE-2025-62470 critical
- CVE-2025-62472 critical
- CVE-2025-62473 high
- CVE-2025-62474 critical
- CVE-2025-62549 critical
- CVE-2025-62565 high
- CVE-2025-62567 high
- CVE-2025-62571 critical
- CVE-2025-62573 high
- CVE-2025-64658 critical
- CVE-2025-64661 critical
- CVE-2025-64666 critical
- CVE-2025-64667 high
- CVE-2025-64670 high
- CVE-2025-64673 critical
- CVE-2025-64678 critical
- CVE-2025-64679 critical
- CVE-2025-64680 critical
Liste KB
- 5066791
- 5066793
- 5068781
- 5068909
- 5068906
- 5068904
- 5068907
- 5068908
- 5068905
- 5071501
- 5071506
- 5071507
- 5071873
- 5071875
- 5071505
- 5071874
- 5071503
- 5071504
- 5071546
En savoir plus
Découvrez les statistiques de la propagation des vulnérabilités dans votre région statistics.securelist.com
Vous avez trouvé une inexactitude dans la description de cette vulnérabilité ? Faites-le nous savoir !