Продукты:
Для дома
Для малого бизнеса
Для среднего бизнеса
Для крупного бизнеса
Уязвимости Угрозы
Главная Уязвимости

Multiple vulnerabilities in Microsoft Products (ESU)

Kaspersky ID:
KLA89277
Дата обнаружения:
14/10/2025
Обновлено:
27/02/2026

Описание

Multiple vulnerabilities were found in Microsoft Products (Extended Security Update). Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, obtain sensitive information, spoof user interface, gain privileges.

Below is a complete list of vulnerabilities:

  1. A remote code execution vulnerability in Predictor can be exploited remotely to execute arbitrary code.
  2. A security bypass vulnerability in SecureBoot in IGEL OS before 11 can be exploited remotely to bypass security restrictions.
  3. An out of bounds read vulnerability in TCG TPM2.0 can be exploited remotely to obtain sensitive information.
  4. An elevation of privilege vulnerability in Windows Agere Modem Driver can be exploited remotely to gain privileges.
  5. An elevation of privilege vulnerability in PowerShell can be exploited remotely to gain privileges.
  6. An elevation of privilege vulnerability in Microsoft Exchange Server can be exploited remotely to gain privileges.
  7. An elevation of privilege vulnerability in Windows NTFS can be exploited remotely to gain privileges.
  8. An elevation of privilege vulnerability in DirectX Graphics Kernel can be exploited remotely to gain privileges.
  9. An elevation of privilege vulnerability in Windows Resilient File System (ReFS) can be exploited remotely to gain privileges.
  10. An elevation of privilege vulnerability in Windows Error Reporting Service can be exploited remotely to gain privileges.
  11. An information disclosure vulnerability in Windows WLAN AutoConfig Service can be exploited remotely to obtain sensitive information.
  12. An information disclosure vulnerability in Windows Routing and Remote Access Service (RRAS) can be exploited remotely to obtain sensitive information.
  13. An elevation of privilege vulnerability in Windows Authentication can be exploited remotely to gain privileges.
  14. An elevation of privilege vulnerability in Windows Ancillary Function Driver for WinSock can be exploited remotely to gain privileges.
  15. A remote code execution vulnerability in Remote Desktop Client can be exploited remotely to execute arbitrary code.
  16. An elevation of privilege vulnerability in Windows COM+ Event System Service can be exploited remotely to gain privileges.
  17. An elevation of privilege vulnerability in Windows SMB Server can be exploited remotely to gain privileges.
  18. A denial of service vulnerability in Windows Local Session Manager (LSM) can be exploited remotely to cause denial of service.
  19. A remote code execution vulnerability in Inbox COM Objects (Global Memory) can be exploited remotely to execute arbitrary code.
  20. A remote code execution vulnerability in Remote Desktop Protocol can be exploited remotely to execute arbitrary code.
  21. A spoofing vulnerability in Microsoft Windows File Explorer can be exploited remotely to spoof user interface.
  22. A spoofing vulnerability in NTLM Hash Disclosure can be exploited remotely to spoof user interface.
  23. An elevation of privilege vulnerability in Windows Kernel can be exploited remotely to gain privileges.
  24. An information disclosure vulnerability in Microsoft Failover Cluster can be exploited remotely to obtain sensitive information.
  25. A denial of service vulnerability in Windows Search Service can be exploited remotely to cause denial of service.
  26. An elevation of privilege vulnerability in Windows Simple Search and Discovery Protocol (SSDP) Service can be exploited remotely to gain privileges.
  27. An elevation of privilege vulnerability in Network Connection Status Indicator (NCSI) can be exploited remotely to gain privileges.
  28. An elevation of privilege vulnerability in Windows Remote Desktop Services can be exploited remotely to gain privileges.
  29. An elevation of privilege vulnerability in Windows Graphics Component can be exploited remotely to gain privileges.
  30. An information disclosure vulnerability in Windows MapUrlToZone can be exploited remotely to obtain sensitive information.
  31. An information disclosure vulnerability in Windows Push Notification can be exploited remotely to obtain sensitive information.
  32. An elevation of privilege vulnerability in Windows Remote Access Connection Manager can be exploited remotely to gain privileges.
  33. A spoofing vulnerability in Microsoft Exchange Server can be exploited remotely to spoof user interface.
  34. An information disclosure vulnerability in Windows Active Directory Federation Services (ADFS) can be exploited remotely to obtain sensitive information.
  35. A tampering vulnerability in Windows SMB Client can be exploited remotely to spoof user interface.
  36. A remote code execution vulnerability in Internet Information Services (IIS) Inbox COM Objects (Global Memory) can be exploited remotely to execute arbitrary code.
  37. A remote code execution vulnerability in Windows Server Update Service (WSUS) can be exploited remotely to execute arbitrary code.
  38. A remote code execution vulnerability in Windows URL Parsing can be exploited remotely to execute arbitrary code.
  39. An elevation of privilege vulnerability in Windows Connected Devices Platform Service can be exploited remotely to gain privileges.
  40. A security bypass vulnerability in Windows Remote Desktop Protocol can be exploited remotely to bypass security restrictions.
  41. An elevation of privilege vulnerability in Windows Speech Runtime can be exploited remotely to gain privileges.
  42. An information disclosure vulnerability in Windows Kernel can be exploited remotely to obtain sensitive information.
  43. An elevation of privilege vulnerability in Windows Bluetooth Service can be exploited remotely to gain privileges.
  44. An information disclosure vulnerability in Windows Cloud Files Mini Filter Driver can be exploited remotely to obtain sensitive information.
  45. An elevation of privilege vulnerability in Xbox IStorageService can be exploited remotely to gain privileges.
  46. An elevation of privilege vulnerability in Windows PrintWorkflowUserSvc can be exploited remotely to gain privileges.
  47. An elevation of privilege vulnerability in Windows Network Driver Interface Specification Driver can be exploited remotely to gain privileges.
  48. An elevation of privilege vulnerability in Windows Cloud Files Mini Filter Driver can be exploited remotely to gain privileges.
  49. A security feature bypass vulnerability in Windows Kernel can be exploited remotely to bypass security restrictions.
  50. An information disclosure vulnerability in Windows Taskbar Live Preview can be exploited remotely to obtain sensitive information.
  51. An information disclosure vulnerability in Windows Storage Management Provider can be exploited remotely to obtain sensitive information.
  52. An elevation of privilege vulnerability in Windows DWM Core Library can be exploited remotely to gain privileges.
  53. A spoofing vulnerability in Windows NTLM can be exploited remotely to spoof user interface.
  54. A security feature bypass vulnerability in Windows Hello can be exploited remotely to bypass security restrictions.
  55. An integer overflow vulnerability in Dolby Digital Plus audio decoder can be exploited remotely to execute arbitrary code.
  56. An elevation of privilege vulnerability in NtQueryInformation Token function (ntifs.h) can be exploited remotely to gain privileges.
  57. An elevation of privilege vulnerability in Windows Management Services can be exploited remotely to gain privileges.
  58. An elevation of privilege vulnerability in Microsoft Brokering File System can be exploited remotely to gain privileges.
  59. A spoofing vulnerability in Virtual Secure Mode can be exploited remotely to spoof user interface.
  60. An elevation of privilege vulnerability in Windows Hyper-V can be exploited remotely to gain privileges.
  61. A denial of service vulnerability in Microsoft Graphics Component can be exploited remotely to cause denial of service.
  62. An elevation of privilege vulnerability in Desktop Windows Manager can be exploited remotely to gain privileges.
  63. An information disclosure vulnerability in Windows ETL Channel can be exploited remotely to obtain sensitive information.
  64. A security feature bypass vulnerability in Windows BitLocker can be exploited remotely to bypass security restrictions.
  65. An elevation of privilege vulnerability in Microsoft DWM Core Library can be exploited remotely to gain privileges.
  66. An information disclosure vulnerability in Windows State Repository API Server File can be exploited remotely to obtain sensitive information.
  67. A denial of service vulnerability in Remote Procedure Call can be exploited remotely to cause denial of service.
  68. An information disclosure vulnerability in Windows Management Services can be exploited remotely to obtain sensitive information.
  69. An elevation of privilege vulnerability in Windows Digital Media can be exploited remotely to gain privileges.
  70. An elevation of privilege vulnerability in Software Protection Platform (SPP) can be exploited remotely to gain privileges.
  71. An elevation of privilege vulnerability in Storport.sys Driver can be exploited remotely to gain privileges.
  72. A spoofing vulnerability in Data Sharing Service can be exploited remotely to spoof user interface.
  73. A remote code execution vulnerability in Windows Connected Devices Platform Service (Cdpsvc) can be exploited remotely to execute arbitrary code.
  74. An elevation of privilege vulnerability in Microsoft Graphics Component can be exploited remotely to gain privileges.
  75. An information disclosure vulnerability in Windows Cryptographic Services can be exploited remotely to obtain sensitive information.
  76. An elevation of privilege vulnerability in Windows Virtualization-Based Security (VBS) Enclave can be exploited remotely to gain privileges.

Первичный источник обнаружения

Эксплуатация

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

Список CVE

  • CVE-2016-9535
    critical
  • CVE-2025-47827
    warning
  • CVE-2025-2884
    high
  • CVE-2025-24052
    critical
  • CVE-2025-24990
    critical
  • CVE-2025-25004
    high
  • CVE-2025-48004
    high
  • CVE-2025-48813
    warning
  • CVE-2025-49708
    critical
  • CVE-2025-50152
    critical
  • CVE-2025-50175
    critical
  • CVE-2025-53139
    high
  • CVE-2025-53150
    critical
  • CVE-2025-53717
    high
  • CVE-2025-53768
    critical
  • CVE-2025-53782
    critical
  • CVE-2025-55325
    high
  • CVE-2025-55326
    critical
  • CVE-2025-55328
    high
  • CVE-2025-55330
    warning
  • CVE-2025-55331
    high
  • CVE-2025-55332
    warning
  • CVE-2025-55333
    warning
  • CVE-2025-55334
    high
  • CVE-2025-55335
    high
  • CVE-2025-55336
    high
  • CVE-2025-55338
    warning
  • CVE-2025-55339
    critical
  • CVE-2025-55340
    high
  • CVE-2025-55678
    high
  • CVE-2025-55679
    warning
  • CVE-2025-55680
    high
  • CVE-2025-55681
    critical
  • CVE-2025-55685
    high
  • CVE-2025-55686
    high
  • CVE-2025-55687
    high
  • CVE-2025-55689
    high
  • CVE-2025-55692
    critical
  • CVE-2025-55695
    warning
  • CVE-2025-55696
    high
  • CVE-2025-55699
    high
  • CVE-2025-55700
    warning
  • CVE-2025-55701
    critical
  • CVE-2025-58714
    critical
  • CVE-2025-58715
    critical
  • CVE-2025-58716
    critical
  • CVE-2025-58717
    warning
  • CVE-2025-58718
    critical
  • CVE-2025-58719
    warning
  • CVE-2025-58720
    critical
  • CVE-2025-58722
    critical
  • CVE-2025-58725
    high
  • CVE-2025-58726
    critical
  • CVE-2025-58727
    high
  • CVE-2025-58728
    critical
  • CVE-2025-58729
    high
  • CVE-2025-58730
    high
  • CVE-2025-58731
    high
  • CVE-2025-58732
    high
  • CVE-2025-58733
    high
  • CVE-2025-58734
    high
  • CVE-2025-58735
    high
  • CVE-2025-58736
    high
  • CVE-2025-58737
    high
  • CVE-2025-58738
    high
  • CVE-2025-58739
    high
  • CVE-2025-59185
    high
  • CVE-2025-59187
    critical
  • CVE-2025-59188
    high
  • CVE-2025-59190
    high
  • CVE-2025-59191
    critical
  • CVE-2025-59192
    critical
  • CVE-2025-59193
    high
  • CVE-2025-59194
    high
  • CVE-2025-59195
    high
  • CVE-2025-59196
    high
  • CVE-2025-59197
    high
  • CVE-2025-59198
    warning
  • CVE-2025-59199
    critical
  • CVE-2025-59200
    critical
  • CVE-2025-59201
    critical
  • CVE-2025-59202
    high
  • CVE-2025-59203
    high
  • CVE-2025-59204
    high
  • CVE-2025-59205
    high
  • CVE-2025-59207
    critical
  • CVE-2025-59208
    high
  • CVE-2025-59209
    high
  • CVE-2025-59211
    high
  • CVE-2025-59214
    high
  • CVE-2025-59230
    critical
  • CVE-2025-59242
    critical
  • CVE-2025-59244
    high
  • CVE-2025-59248
    critical
  • CVE-2025-59249
    critical
  • CVE-2025-59253
    high
  • CVE-2025-59254
    critical
  • CVE-2025-59255
    critical
  • CVE-2025-59258
    high
  • CVE-2025-59259
    high
  • CVE-2025-59261
    high
  • CVE-2025-59275
    critical
  • CVE-2025-59277
    critical
  • CVE-2025-59278
    critical
  • CVE-2025-59280
    warning
  • CVE-2025-59282
    high
  • CVE-2025-59284
    high
  • CVE-2025-59287
    critical
  • CVE-2025-59289
    high
  • CVE-2025-59290
    critical
  • CVE-2025-59294
    warning
  • CVE-2025-59295
    critical
  • CVE-2025-59502
    critical
  • CVE-2025-54957
    critical

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!
Kaspersky IT Security Calculator:
Оцените ваш профиль кибербезопасности
Узнать больше
Встречай новый Kaspersky!
Каждая минута твоей онлайн-жизни заслуживает топовой защиты.
Узнать больше
Посты по теме
06 March 2026
Securelist
Эксплойты и уязвимости в четвертом квартале 2025 года
04 March 2026
Securelist
Мобильная вирусология 2025
26 February 2026
Securelist
Новая рассылка Head Mare: договор с фантомом
25 February 2026
Securelist
Librarian Likho масштабирует атаки: анализируем новую кампанию группы
19 February 2026
Securelist
Стилер Arkanix: инструмент для кражи данных на C++ и Python
17 February 2026
Securelist
Разделяй и властвуй: как новый бэкдор Keenadu помог выявить связи между крупными Android-ботнетами
Нашли неточность в описании этой уязвимости?
Если вы нашли новую угрозу или уязвимость, пожалуйста дайте нам знать по электронной почте:
newvirus@kaspersky.com
Нашли новую угрозу или уязвимость?
Если вы нашли новую угрозу или уязвимость, пожалуйста дайте нам знать по электронной почте:
newvirus@kaspersky.com
Продукты
Для дома
Для малого бизнеса
Для среднего бизнеса
Для крупного бизнеса
Select language
Severity level
Critical
High
Warning
Sorting
Kaspersky ID
Уязвимость
Detect date
Уровень угрозы
You must select at least one severity level
Do you want to save your changes?
Your message has been sent successfully.