Multiple vulnerabilities in Microsoft Products (ESU)

説明

Multiple vulnerabilities were found in Microsoft Products (Extended Security Update). Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, bypass security restrictions, spoof user interface.

Below is a complete list of vulnerabilities:

1. An elevation of privilege vulnerability in Windows MBT Transport Driver can be exploited remotely to gain privileges.
2. A remote code execution vulnerability in Windows Storage-based Management Service can be exploited remotely to execute arbitrary code.
3. A spoofing vulnerability in Windows Certificate can be exploited remotely to spoof user interface.

オリジナルアドバイザリー

• CVE-2025-55231

• CVE-2025-55230
• CVE-2025-55229

エクスプロイテーション

Public exploits exist for this vulnerability.

関連製品

• Microsoft-Windows
• Microsoft-Windows-Server
• Microsoft-Windows-Server-2012
• Microsoft-Windows-Server-2008
• Microsoft-Windows-10
• Microsoft-Windows-11

CVEリスト

• CVE-2025-55229
  high
• CVE-2025-55230
  critical
• CVE-2025-55231
  critical

KBリスト

• 5058405
• 5058379
• 5062597
• 5062632
• 5062619
• 5062624
• 5062592
• 5062618
• 5062554
• 5062552

も参照してください

お住まいの地域に広がる脆弱性の統計をご覧ください statistics.securelist.com