cvelistv5 - CVE-2025-24990

CVE-2025-24990 (GCVE-0-2025-24990)

Vulnerability from cvelistv5 – Published: 2025-10-14 17:00 – Updated: 2025-12-11 19:34

CISA

Title

Windows Agere Modem Driver Elevation of Privilege Vulnerability

Summary

Microsoft is aware of vulnerabilities in the third party Agere Modem driver that ships natively with supported Windows operating systems. This is an announcement of the upcoming removal of ltmdm64.sys driver. The driver has been removed in the October cumulative update. Fax modem hardware dependent on this specific driver will no longer work on Windows. Microsoft recommends removing any existing dependencies on this hardware.

Severity ?

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C

CWE

CWE-822 - Untrusted Pointer Dereference

Assigner

microsoft

References

URL

Tags

https://msrc.microsoft.com/update-guide/vulnerabi…

vendor-advisory

Impacted products

Vendor

Product

Version

Microsoft

Windows 11 Version 25H2

Affected: 10.0.26200.0 , < 10.0.26200.6899 (custom)

Microsoft	Windows 10 Version 1809	Affected: 10.0.17763.0 , < 10.0.17763.7919 (custom)
Microsoft	Windows Server 2019	Affected: 10.0.17763.0 , < 10.0.17763.7919 (custom)
Microsoft	Windows Server 2019 (Server Core installation)	Affected: 10.0.17763.0 , < 10.0.17763.7919 (custom)
Microsoft	Windows Server 2022	Affected: 10.0.20348.0 , < 10.0.20348.4294 (custom)
Microsoft	Windows 10 Version 21H2	Affected: 10.0.19044.0 , < 10.0.19044.6456 (custom)
Microsoft	Windows 11 version 22H2	Affected: 10.0.22621.0 , < 10.0.22621.6060 (custom)
Microsoft	Windows 10 Version 22H2	Affected: 10.0.19045.0 , < 10.0.19045.6456 (custom)
Microsoft	Windows Server 2025 (Server Core installation)	Affected: 10.0.26100.0 , < 10.0.26100.6899 (custom)
Microsoft	Windows 11 Version 23H2	Affected: 10.0.22631.0 , < 10.0.22631.6060 (custom)
Microsoft	Windows Server 2022, 23H2 Edition (Server Core installation)	Affected: 10.0.25398.0 , < 10.0.25398.1913 (custom)
Microsoft	Windows 11 Version 24H2	Affected: 10.0.26100.0 , < 10.0.26100.6899 (custom)
Microsoft	Windows Server 2025	Affected: 10.0.26100.0 , < 10.0.26100.6899 (custom)
Microsoft	Windows 10 Version 1507	Affected: 10.0.10240.0 , < 10.0.10240.21161 (custom)
Microsoft	Windows 10 Version 1607	Affected: 10.0.14393.0 , < 10.0.14393.8519 (custom)
Microsoft	Windows Server 2016	Affected: 10.0.14393.0 , < 10.0.14393.8519 (custom)
Microsoft	Windows Server 2016 (Server Core installation)	Affected: 10.0.14393.0 , < 10.0.14393.8519 (custom)
Microsoft	Windows Server 2008 Service Pack 2	Affected: 6.0.6003.0 , < 6.0.6003.23571 (custom)
Microsoft	Windows Server 2008 Service Pack 2 (Server Core installation)	Affected: 6.0.6003.0 , < 6.0.6003.23571 (custom)
Microsoft	Windows Server 2008 R2 Service Pack 1	Affected: 6.1.7601.0 , < 6.1.7601.27974 (custom)
Microsoft	Windows Server 2008 R2 Service Pack 1 (Server Core installation)	Affected: 6.1.7601.0 , < 6.1.7601.27974 (custom)
Microsoft	Windows Server 2012	Affected: 6.2.9200.0 , < 6.2.9200.25722 (custom)
Microsoft	Windows Server 2012 (Server Core installation)	Affected: 6.2.9200.0 , < 6.2.9200.25722 (custom)
Microsoft	Windows Server 2012 R2	Affected: 6.3.9600.0 , < 6.3.9600.22824 (custom)
Microsoft	Windows Server 2012 R2 (Server Core installation)	Affected: 6.3.9600.0 , < 6.3.9600.22824 (custom)

CISA Known Exploited Vulnerability

Data from the CISA Known Exploited Vulnerabilities Catalog

Date added: 2025-10-14

Due date: 2025-11-04

Required action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Used in ransomware: Unknown

Notes: https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-24990 ; https://nvd.nist.gov/vuln/detail/CVE-2025-24990

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-24990",
                "options": [
                  {
                    "Exploitation": "active"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-10-15T03:56:27.241259Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          },
          {
            "other": {
              "content": {
                "dateAdded": "2025-10-14",
                "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-24990"
              },
              "type": "kev"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-10-21T22:45:16.392Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "government-resource"
            ],
            "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-24990"
          }
        ],
        "timeline": [
          {
            "lang": "en",
            "time": "2025-10-14T00:00:00+00:00",
            "value": "CVE-2025-24990 added to CISA KEV"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-17T18:23:26.456Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "https://www.vicarius.io/vsociety/posts/cve-2025-24990-detection-script-elevation-of-privilege-vulnerability-in-agere-modem-driver-affecting-windows"
          },
          {
            "url": "https://www.vicarius.io/vsociety/posts/cve-2025-24990-mitigation-script-elevation-of-privilege-vulnerability-in-agere-modem-driver-affecting-windows"
          }
        ],
        "title": "CVE Program Container",
        "x_generator": {
          "engine": "ADPogram 0.0.1"
        }
      }
    ],
    "cna": {
      "affected": [
        {
          "platforms": [
            "Unknown"
          ],
          "product": "Windows 11 Version 25H2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.26200.6899",
              "status": "affected",
              "version": "10.0.26200.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 1809",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.17763.7919",
              "status": "affected",
              "version": "10.0.17763.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2019",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.17763.7919",
              "status": "affected",
              "version": "10.0.17763.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2019 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.17763.7919",
              "status": "affected",
              "version": "10.0.17763.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2022",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.20348.4294",
              "status": "affected",
              "version": "10.0.20348.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 21H2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.19044.6456",
              "status": "affected",
              "version": "10.0.19044.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows 11 version 22H2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.22621.6060",
              "status": "affected",
              "version": "10.0.22621.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 22H2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.19045.6456",
              "status": "affected",
              "version": "10.0.19045.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2025 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.26100.6899",
              "status": "affected",
              "version": "10.0.26100.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows 11 Version 23H2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.22631.6060",
              "status": "affected",
              "version": "10.0.22631.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2022, 23H2 Edition (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.25398.1913",
              "status": "affected",
              "version": "10.0.25398.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows 11 Version 24H2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.26100.6899",
              "status": "affected",
              "version": "10.0.26100.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2025",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.26100.6899",
              "status": "affected",
              "version": "10.0.26100.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 1507",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.10240.21161",
              "status": "affected",
              "version": "10.0.10240.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 1607",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.14393.8519",
              "status": "affected",
              "version": "10.0.14393.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2016",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.14393.8519",
              "status": "affected",
              "version": "10.0.14393.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2016 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.14393.8519",
              "status": "affected",
              "version": "10.0.14393.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2008 Service Pack 2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.0.6003.23571",
              "status": "affected",
              "version": "6.0.6003.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2008 Service Pack 2 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.0.6003.23571",
              "status": "affected",
              "version": "6.0.6003.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2008 R2 Service Pack 1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.1.7601.27974",
              "status": "affected",
              "version": "6.1.7601.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.1.7601.27974",
              "status": "affected",
              "version": "6.1.7601.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.2.9200.25722",
              "status": "affected",
              "version": "6.2.9200.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.2.9200.25722",
              "status": "affected",
              "version": "6.2.9200.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 R2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.3.9600.22824",
              "status": "affected",
              "version": "6.3.9600.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 R2 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.3.9600.22824",
              "status": "affected",
              "version": "6.3.9600.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_11_2H2:*:*:*:*:*:*:x64:*",
                  "versionEndExcluding": "10.0.26200.6899",
                  "versionStartIncluding": "10.0.26200.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
                  "versionEndExcluding": "10.0.17763.7919",
                  "versionStartIncluding": "10.0.17763.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "10.0.17763.7919",
                  "versionStartIncluding": "10.0.17763.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "10.0.17763.7919",
                  "versionStartIncluding": "10.0.17763.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "10.0.20348.4294",
                  "versionStartIncluding": "10.0.20348.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x64:*",
                  "versionEndExcluding": "10.0.19044.6456",
                  "versionStartIncluding": "10.0.19044.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:x64:*",
                  "versionEndExcluding": "10.0.22621.6060",
                  "versionStartIncluding": "10.0.22621.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*",
                  "versionEndExcluding": "10.0.19045.6456",
                  "versionStartIncluding": "10.0.19045.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "10.0.26100.6899",
                  "versionStartIncluding": "10.0.26100.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*",
                  "versionEndExcluding": "10.0.22631.6060",
                  "versionStartIncluding": "10.0.22631.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "10.0.25398.1913",
                  "versionStartIncluding": "10.0.25398.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:x64:*",
                  "versionEndExcluding": "10.0.26100.6899",
                  "versionStartIncluding": "10.0.26100.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "10.0.26100.6899",
                  "versionStartIncluding": "10.0.26100.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x64:*",
                  "versionEndExcluding": "10.0.10240.21161",
                  "versionStartIncluding": "10.0.10240.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*",
                  "versionEndExcluding": "10.0.14393.8519",
                  "versionStartIncluding": "10.0.14393.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "10.0.14393.8519",
                  "versionStartIncluding": "10.0.14393.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "10.0.14393.8519",
                  "versionStartIncluding": "10.0.14393.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x86:*",
                  "versionEndExcluding": "6.0.6003.23571",
                  "versionStartIncluding": "6.0.6003.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x86:*",
                  "versionEndExcluding": "6.0.6003.23571",
                  "versionStartIncluding": "6.0.6003.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*",
                  "versionEndExcluding": "6.1.7601.27974",
                  "versionStartIncluding": "6.1.7601.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*",
                  "versionEndExcluding": "6.1.7601.27974",
                  "versionStartIncluding": "6.1.7601.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                  "versionEndExcluding": "6.2.9200.25722",
                  "versionStartIncluding": "6.2.9200.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*",
                  "versionEndExcluding": "6.2.9200.25722",
                  "versionStartIncluding": "6.2.9200.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                  "versionEndExcluding": "6.3.9600.22824",
                  "versionStartIncluding": "6.3.9600.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*",
                  "versionEndExcluding": "6.3.9600.22824",
                  "versionStartIncluding": "6.3.9600.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "datePublic": "2025-10-14T07:00:00.000Z",
      "descriptions": [
        {
          "lang": "en-US",
          "value": "Microsoft is aware of vulnerabilities in the third party Agere Modem driver that ships natively with supported Windows operating systems.  This is an announcement of the upcoming removal of ltmdm64.sys driver.  The driver has been removed in the October cumulative update.\nFax modem hardware dependent on this specific driver will no longer work on Windows.\nMicrosoft recommends removing any existing dependencies on this hardware."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-822",
              "description": "CWE-822: Untrusted Pointer Dereference",
              "lang": "en-US",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-12-11T19:34:59.362Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "name": "Windows Agere Modem Driver Elevation of Privilege Vulnerability",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24990"
        }
      ],
      "title": "Windows Agere Modem Driver Elevation of Privilege Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2025-24990",
    "datePublished": "2025-10-14T17:00:10.973Z",
    "dateReserved": "2025-01-30T15:14:20.992Z",
    "dateUpdated": "2025-12-11T19:34:59.362Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "cisa_known_exploited": {
      "cveID": "CVE-2025-24990",
      "cwes": "[\"CWE-822\"]",
      "dateAdded": "2025-10-14",
      "dueDate": "2025-11-04",
      "knownRansomwareCampaignUse": "Unknown",
      "notes": "https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-24990 ; https://nvd.nist.gov/vuln/detail/CVE-2025-24990",
      "product": "Windows",
      "requiredAction": "Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.",
      "shortDescription": "Microsoft Windows Agere Modem Driver contains an untrusted pointer dereference vulnerability that allows for privilege escalation. An attacker who successfully exploited this vulnerability could gain administrator privileges.",
      "vendorProject": "Microsoft",
      "vulnerabilityName": "Microsoft Windows Untrusted Pointer Dereference Vulnerability"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-24990\",\"sourceIdentifier\":\"secure@microsoft.com\",\"published\":\"2025-10-14T17:15:39.193\",\"lastModified\":\"2025-11-18T17:03:38.993\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Microsoft is aware of vulnerabilities in the third party Agere Modem driver that ships natively with supported Windows operating systems.  This is an announcement of the upcoming removal of ltmdm64.sys driver.  The driver has been removed in the October cumulative update.\\nFax modem hardware dependent on this specific driver will no longer work on Windows.\\nMicrosoft recommends removing any existing dependencies on this hardware.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}]},\"cisaExploitAdd\":\"2025-10-14\",\"cisaActionDue\":\"2025-11-04\",\"cisaRequiredAction\":\"Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.\",\"cisaVulnerabilityName\":\"Microsoft Windows Untrusted Pointer Dereference Vulnerability\",\"weaknesses\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-822\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x64:*\",\"versionEndExcluding\":\"10.0.10240.21161\",\"matchCriteriaId\":\"030F3214-D6AF-40A9-9FC9-523AC9870581\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*\",\"versionEndExcluding\":\"10.0.14393.8519\",\"matchCriteriaId\":\"D8145D41-BFB2-47A6-B5E5-1A038A27C1C1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*\",\"versionEndExcluding\":\"10.0.17763.7919\",\"matchCriteriaId\":\"E216CD5B-8885-4E17-8718-97E88A724A44\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:x64:*\",\"versionEndExcluding\":\"10.0.19044.6456\",\"matchCriteriaId\":\"8EA6DE31-A17D-43D4-9154-49B5FA8FB5A6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:x64:*\",\"versionEndExcluding\":\"10.0.19045.6456\",\"matchCriteriaId\":\"B5441F68-143C-4091-B709-14CAC586DF76\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:x64:*\",\"versionEndExcluding\":\"10.0.22621.6060\",\"matchCriteriaId\":\"EF253003-2A82-4CFB-A6A3-267B3C485056\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_23h2:*:*:*:*:*:*:x64:*\",\"versionEndIncluding\":\"10.0.22631.6060\",\"matchCriteriaId\":\"85672C76-ADAD-468B-8C20-8A3587DA008A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_24h2:*:*:*:*:*:*:x64:*\",\"versionEndExcluding\":\"10.0.26100.6899\",\"matchCriteriaId\":\"4A557865-B254-47F6-953B-340EF93FDB2B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_25h2:*:*:*:*:*:*:x64:*\",\"versionEndExcluding\":\"10.0.26200.6899\",\"matchCriteriaId\":\"A7382D6B-5E7D-4769-BC40-0120F08DC6B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*\",\"matchCriteriaId\":\"2127D10C-B6F3-4C1D-B9AA-5D78513CC996\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\",\"matchCriteriaId\":\"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB18C4CE-5917-401E-ACF7-2747084FD36E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"10.0.14393.8519\",\"matchCriteriaId\":\"860ADFF9-62D0-425B-9310-99ACFC92EB12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.17763.7919\",\"matchCriteriaId\":\"20810926-AEC9-4C09-9C52-B4B8FADECF3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.20348.4294\",\"matchCriteriaId\":\"B1C1EA69-6BB8-4E59-8659-43581FDB48B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2022_23h2:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.25398.1913\",\"matchCriteriaId\":\"370C12D6-90EF-44BE-8070-AA0080C12600\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"10.0.26100.6899\",\"matchCriteriaId\":\"CD6268EB-C42B-406F-B3FF-6E694F93BF41\"}]}]}],\"references\":[{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24990\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.vicarius.io/vsociety/posts/cve-2025-24990-detection-script-elevation-of-privilege-vulnerability-in-agere-modem-driver-affecting-windows\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.vicarius.io/vsociety/posts/cve-2025-24990-mitigation-script-elevation-of-privilege-vulnerability-in-agere-modem-driver-affecting-windows\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mitigation\",\"Third Party Advisory\"]},{\"url\":\"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-24990\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"US Government Resource\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.vicarius.io/vsociety/posts/cve-2025-24990-detection-script-elevation-of-privilege-vulnerability-in-agere-modem-driver-affecting-windows\"}, {\"url\": \"https://www.vicarius.io/vsociety/posts/cve-2025-24990-mitigation-script-elevation-of-privilege-vulnerability-in-agere-modem-driver-affecting-windows\"}], \"x_generator\": {\"engine\": \"ADPogram 0.0.1\"}, \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-11-17T18:23:26.456Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-24990\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"active\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-10-15T03:56:27.241259Z\"}}}, {\"other\": {\"type\": \"kev\", \"content\": {\"dateAdded\": \"2025-10-14\", \"reference\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-24990\"}}}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2025-10-14T00:00:00+00:00\", \"value\": \"CVE-2025-24990 added to CISA KEV\"}], \"references\": [{\"url\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-24990\", \"tags\": [\"government-resource\"]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-10-14T17:37:45.424Z\"}}], \"cna\": {\"title\": \"Windows Agere Modem Driver Elevation of Privilege Vulnerability\", \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"version\": \"3.1\", \"baseScore\": 7.8, \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C\"}, \"scenarios\": [{\"lang\": \"en-US\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Microsoft\", \"product\": \"Windows 11 Version 25H2\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.26200.0\", \"lessThan\": \"10.0.26200.6899\", \"versionType\": \"custom\"}], \"platforms\": [\"Unknown\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows 10 Version 1809\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.17763.0\", \"lessThan\": \"10.0.17763.7919\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2019\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.17763.0\", \"lessThan\": \"10.0.17763.7919\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2019 (Server Core installation)\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.17763.0\", \"lessThan\": \"10.0.17763.7919\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2022\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.20348.0\", \"lessThan\": \"10.0.20348.4294\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows 10 Version 21H2\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.19044.0\", \"lessThan\": \"10.0.19044.6456\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows 11 version 22H2\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.22621.0\", \"lessThan\": \"10.0.22621.6060\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows 10 Version 22H2\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.19045.0\", \"lessThan\": \"10.0.19045.6456\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2025 (Server Core installation)\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.26100.0\", \"lessThan\": \"10.0.26100.6899\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows 11 Version 23H2\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.22631.0\", \"lessThan\": \"10.0.22631.6060\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2022, 23H2 Edition (Server Core installation)\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.25398.0\", \"lessThan\": \"10.0.25398.1913\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows 11 Version 24H2\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.26100.0\", \"lessThan\": \"10.0.26100.6899\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2025\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.26100.0\", \"lessThan\": \"10.0.26100.6899\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows 10 Version 1507\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.10240.0\", \"lessThan\": \"10.0.10240.21161\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows 10 Version 1607\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.14393.0\", \"lessThan\": \"10.0.14393.8519\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2016\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.14393.0\", \"lessThan\": \"10.0.14393.8519\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2016 (Server Core installation)\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.14393.0\", \"lessThan\": \"10.0.14393.8519\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2008 Service Pack 2\", \"versions\": [{\"status\": \"affected\", \"version\": \"6.0.6003.0\", \"lessThan\": \"6.0.6003.23571\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2008 Service Pack 2 (Server Core installation)\", \"versions\": [{\"status\": \"affected\", \"version\": \"6.0.6003.0\", \"lessThan\": \"6.0.6003.23571\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2008 R2 Service Pack 1\", \"versions\": [{\"status\": \"affected\", \"version\": \"6.1.7601.0\", \"lessThan\": \"6.1.7601.27974\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2008 R2 Service Pack 1 (Server Core installation)\", \"versions\": [{\"status\": \"affected\", \"version\": \"6.1.7601.0\", \"lessThan\": \"6.1.7601.27974\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2012\", \"versions\": [{\"status\": \"affected\", \"version\": \"6.2.9200.0\", \"lessThan\": \"6.2.9200.25722\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2012 (Server Core installation)\", \"versions\": [{\"status\": \"affected\", \"version\": \"6.2.9200.0\", \"lessThan\": \"6.2.9200.25722\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2012 R2\", \"versions\": [{\"status\": \"affected\", \"version\": \"6.3.9600.0\", \"lessThan\": \"6.3.9600.22824\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Windows Server 2012 R2 (Server Core installation)\", \"versions\": [{\"status\": \"affected\", \"version\": \"6.3.9600.0\", \"lessThan\": \"6.3.9600.22824\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}], \"datePublic\": \"2025-10-14T07:00:00.000Z\", \"references\": [{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24990\", \"name\": \"Windows Agere Modem Driver Elevation of Privilege Vulnerability\", \"tags\": [\"vendor-advisory\"]}], \"descriptions\": [{\"lang\": \"en-US\", \"value\": \"Microsoft is aware of vulnerabilities in the third party Agere Modem driver that ships natively with supported Windows operating systems.  This is an announcement of the upcoming removal of ltmdm64.sys driver.  The driver has been removed in the October cumulative update.\\nFax modem hardware dependent on this specific driver will no longer work on Windows.\\nMicrosoft recommends removing any existing dependencies on this hardware.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en-US\", \"type\": \"CWE\", \"cweId\": \"CWE-822\", \"description\": \"CWE-822: Untrusted Pointer Dereference\"}]}], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:o:microsoft:windows_11_2H2:*:*:*:*:*:*:x64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.26200.6899\", \"versionStartIncluding\": \"10.0.26200.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.17763.7919\", \"versionStartIncluding\": \"10.0.17763.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.17763.7919\", \"versionStartIncluding\": \"10.0.17763.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.17763.7919\", \"versionStartIncluding\": \"10.0.17763.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.20348.4294\", \"versionStartIncluding\": \"10.0.20348.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.19044.6456\", \"versionStartIncluding\": \"10.0.19044.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_11_22H2:*:*:*:*:*:*:x64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.22621.6060\", \"versionStartIncluding\": \"10.0.22621.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_10_22H2:*:*:*:*:*:*:x64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.19045.6456\", \"versionStartIncluding\": \"10.0.19045.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.26100.6899\", \"versionStartIncluding\": \"10.0.26100.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_11_23H2:*:*:*:*:*:*:x64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.22631.6060\", \"versionStartIncluding\": \"10.0.22631.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_23h2:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.25398.1913\", \"versionStartIncluding\": \"10.0.25398.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_11_24H2:*:*:*:*:*:*:x64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.26100.6899\", \"versionStartIncluding\": \"10.0.26100.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.26100.6899\", \"versionStartIncluding\": \"10.0.26100.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.10240.21161\", \"versionStartIncluding\": \"10.0.10240.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.14393.8519\", \"versionStartIncluding\": \"10.0.14393.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.14393.8519\", \"versionStartIncluding\": \"10.0.14393.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.14393.8519\", \"versionStartIncluding\": \"10.0.14393.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x86:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.0.6003.23571\", \"versionStartIncluding\": \"6.0.6003.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008_sp2:*:*:*:*:*:*:x86:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.0.6003.23571\", \"versionStartIncluding\": \"6.0.6003.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.1.7601.27974\", \"versionStartIncluding\": \"6.1.7601.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.1.7601.27974\", \"versionStartIncluding\": \"6.1.7601.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.2.9200.25722\", \"versionStartIncluding\": \"6.2.9200.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.2.9200.25722\", \"versionStartIncluding\": \"6.2.9200.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.3.9600.22824\", \"versionStartIncluding\": \"6.3.9600.0\"}, {\"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.3.9600.22824\", \"versionStartIncluding\": \"6.3.9600.0\"}], \"operator\": \"OR\"}]}], \"providerMetadata\": {\"orgId\": \"f38d906d-7342-40ea-92c1-6c4a2c6478c8\", \"shortName\": \"microsoft\", \"dateUpdated\": \"2025-12-11T19:34:59.362Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2025-24990\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-12-11T19:34:59.362Z\", \"dateReserved\": \"2025-01-30T15:14:20.992Z\", \"assignerOrgId\": \"f38d906d-7342-40ea-92c1-6c4a2c6478c8\", \"datePublished\": \"2025-10-14T17:00:10.973Z\", \"assignerShortName\": \"microsoft\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

GHSA-9G9X-FC99-93R6

Vulnerability from github – Published: 2025-10-14 18:30 – Updated: 2025-11-17 21:31

Details

Severity ?

7.8 (High)


                  
                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2025-24990"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-822"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-10-14T17:15:39Z",
    "severity": "HIGH"
  },
  "details": "Microsoft is aware of vulnerabilities in the third party Agere Modem driver that ships natively with supported Windows operating systems.  This is an announcement of the upcoming removal of ltmdm64.sys driver.  The driver has been removed in the October cumulative update.\nFax modem hardware dependent on this specific driver will no longer work on Windows.\nMicrosoft recommends removing any existing dependencies on this hardware.",
  "id": "GHSA-9g9x-fc99-93r6",
  "modified": "2025-11-17T21:31:19Z",
  "published": "2025-10-14T18:30:28Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-24990"
    },
    {
      "type": "WEB",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24990"
    },
    {
      "type": "WEB",
      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-24990"
    },
    {
      "type": "WEB",
      "url": "https://www.vicarius.io/vsociety/posts/cve-2025-24990-detection-script-elevation-of-privilege-vulnerability-in-agere-modem-driver-affecting-windows"
    },
    {
      "type": "WEB",
      "url": "https://www.vicarius.io/vsociety/posts/cve-2025-24990-mitigation-script-elevation-of-privilege-vulnerability-in-agere-modem-driver-affecting-windows"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

NCSC-2025-0310

Vulnerability from csaf_ncscnl - Published: 2025-10-14 18:03 - Updated: 2025-10-24 11:09

Summary

Kwetsbaarheden verholpen in Microsoft Windows

Notes

The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions: NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein. NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory. This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.

Feiten

Microsoft heeft kwetsbaarheden verholpen in Windows.

Interpretaties

Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot de volgende categorieën schade: - Denial-of-Service - Omzeilen van een beveiligingsmaatregel - Manipulatie van gegevens - Uitvoeren van willekeurige code (gebruikersrechten) - Uitvoeren van willekeurige code (root/adminrechten) - Toegang tot gevoelige gegevens - Verkrijgen van verhoogde rechten - Spoofing De ernstigste kwetsbaarheden hebben de kenmerken CVE-2025-49708 en CVE-2025-59287 toegewezen gekregen. De kwetsbaarheid met kenmerk CVE-2025-49708 bevindt zich in de Graphics Component en stelt een kwaadwillende in staat om uit een Virtual Machine (VM) te breken en acties uit te voeren op de onderliggende Host. De kwetsbaarheid met kenmerk CVE-2025-59287 bevindt zich in de Windows Server Update Servce (WSUS) en stelt een kwaadwillende in staat om op afstand willekeurige code uit te voeren op het kwetsbare systeem. Van de kwetsbaarheid met kenmerk CVE-2025-59230 meldt Microsoft informatie te hebben dat deze actief is misbruikt op verouderde systemen. De kwetsbaarheid bevindt zich in de Remote Access Connection Manager stelt een lokale, geauthenticeerde kwaadwillende in staat om zich SYSTEM-rechten toe te kennen en zo mogelijk willekeurige code uit te voeren als SYSTEM **Update:** Het NCSC heeft van een vertrouwde partner vernomen dat op 24 oktober 2025 misbruik van de kwetsbaarheid met kenmerk CVE-2025-59287 is waargenomen. Deze kwetsbaarheid bevindt zich in de WSUS-service en stelt een kwaadwillende in staat om willekeurige code uit te voeren op het kwetsbare systeem. Het is niet gebruikelijk een WSUS service publiek via internet toegankelijk te hebben. Inmiddels is er publieke proof-of-conceptcode beschikbaar voor de betreffende kwetsbaarheid, wat het risico op misbruik verhoogt. **De in deze Patch-Tuesday update uitgebrachte oplossing voor deze kwetsbaarheid blijkt niet afdoende te zijn. Microsoft heeft hiervoor een out-of-band patch uitgebracht die zo spoedig mogelijk aanvullend op de Patch-Tuesday update dient te worden ingezet.** ``` Windows Confidential Virtual Machines (CVM): |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-48813 | 6.30 | Voordoen als andere gebruiker | |----------------|------|-------------------------------------| Windows Resilient File System (ReFS): |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-55687 | 7.40 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows DirectX: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-55678 | 7.00 | Verkrijgen van verhoogde rechten | | CVE-2025-55698 | 7.70 | Denial-of-Service | |----------------|------|-------------------------------------| Windows DWM: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-55681 | 7.00 | Verkrijgen van verhoogde rechten | | CVE-2025-58722 | 7.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Xbox: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-53768 | 7.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows Kernel: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59186 | 5.50 | Toegang tot gevoelige gegevens | | CVE-2025-59207 | 7.80 | Verkrijgen van verhoogde rechten | | CVE-2025-50152 | 7.80 | Verkrijgen van verhoogde rechten | | CVE-2025-55334 | 6.20 | Omzeilen van beveiligingsmaatregel | | CVE-2025-55679 | 5.10 | Toegang tot gevoelige gegevens | | CVE-2025-55683 | 5.50 | Toegang tot gevoelige gegevens | | CVE-2025-55693 | 7.40 | Verkrijgen van verhoogde rechten | | CVE-2025-55699 | 5.50 | Toegang tot gevoelige gegevens | | CVE-2025-59187 | 7.80 | Verkrijgen van verhoogde rechten | | CVE-2025-59194 | 7.00 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows Routing and Remote Access Service (RRAS): |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-55700 | 6.50 | Toegang tot gevoelige gegevens | | CVE-2025-58717 | 6.50 | Toegang tot gevoelige gegevens | |----------------|------|-------------------------------------| Inbox COM Objects: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-58732 | 7.00 | Uitvoeren van willekeurige code | | CVE-2025-58735 | 7.00 | Uitvoeren van willekeurige code | | CVE-2025-59282 | 7.00 | Uitvoeren van willekeurige code | | CVE-2025-58730 | 7.00 | Uitvoeren van willekeurige code | | CVE-2025-58731 | 7.00 | Uitvoeren van willekeurige code | | CVE-2025-58733 | 7.00 | Uitvoeren van willekeurige code | | CVE-2025-58734 | 7.00 | Uitvoeren van willekeurige code | | CVE-2025-58736 | 7.00 | Uitvoeren van willekeurige code | | CVE-2025-58738 | 7.00 | Uitvoeren van willekeurige code | |----------------|------|-------------------------------------| Agere Windows Modem Driver: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-24990 | 7.80 | Verkrijgen van verhoogde rechten | | CVE-2025-24052 | 7.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Active Directory Federation Services: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59258 | 6.20 | Toegang tot gevoelige gegevens | |----------------|------|-------------------------------------| Windows Push Notification Core: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59211 | 5.50 | Toegang tot gevoelige gegevens | | CVE-2025-59209 | 5.50 | Toegang tot gevoelige gegevens | |----------------|------|-------------------------------------| Windows Authentication Methods: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59277 | 7.80 | Verkrijgen van verhoogde rechten | | CVE-2025-59275 | 7.80 | Verkrijgen van verhoogde rechten | | CVE-2025-59278 | 7.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows File Explorer: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-58739 | 6.50 | Voordoen als andere gebruiker | | CVE-2025-59214 | 6.50 | Voordoen als andere gebruiker | |----------------|------|-------------------------------------| Data Sharing Service Client: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59200 | 7.70 | Voordoen als andere gebruiker | |----------------|------|-------------------------------------| Windows Hyper-V: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-55328 | 7.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows NTFS: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-55335 | 7.40 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows ETL Channel: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59197 | 5.50 | Toegang tot gevoelige gegevens | |----------------|------|-------------------------------------| Microsoft Failover Cluster Virtual Driver: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59260 | 5.50 | Toegang tot gevoelige gegevens | |----------------|------|-------------------------------------| Windows Server Update Service: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59287 | 9.80 | Uitvoeren van willekeurige code | |----------------|------|-------------------------------------| Microsoft Windows Speech: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-58715 | 8.80 | Verkrijgen van verhoogde rechten | | CVE-2025-58716 | 8.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows NTLM: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59284 | 3.30 | Voordoen als andere gebruiker | |----------------|------|-------------------------------------| Windows COM: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-58725 | 7.00 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Network Connection Status Indicator (NCSI): |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59201 | 7.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| TCG TPM2.0: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-2884 | 5.30 | Toegang tot gevoelige gegevens | |----------------|------|-------------------------------------| Windows MapUrlToZone: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59208 | 7.10 | Toegang tot gevoelige gegevens | |----------------|------|-------------------------------------| Internet Explorer: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59295 | 8.80 | Uitvoeren van willekeurige code | |----------------|------|-------------------------------------| Windows Core Shell: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59185 | 6.50 | Voordoen als andere gebruiker | | CVE-2025-59244 | 6.50 | Voordoen als andere gebruiker | |----------------|------|-------------------------------------| Windows SMB Server: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-58726 | 7.50 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows Remote Access Connection Manager: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59230 | 7.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows PrintWorkflowUserSvc: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-55685 | 7.00 | Verkrijgen van verhoogde rechten | | CVE-2025-55686 | 7.00 | Verkrijgen van verhoogde rechten | | CVE-2025-55689 | 7.00 | Verkrijgen van verhoogde rechten | | CVE-2025-55331 | 7.00 | Verkrijgen van verhoogde rechten | | CVE-2025-55684 | 7.00 | Verkrijgen van verhoogde rechten | | CVE-2025-55688 | 7.00 | Verkrijgen van verhoogde rechten | | CVE-2025-55690 | 7.00 | Verkrijgen van verhoogde rechten | | CVE-2025-55691 | 7.00 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows Taskbar Live: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59294 | 2.10 | Toegang tot gevoelige gegevens | |----------------|------|-------------------------------------| Windows BitLocker: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-55333 | 6.10 | Omzeilen van beveiligingsmaatregel | | CVE-2025-55338 | 6.10 | Omzeilen van beveiligingsmaatregel | | CVE-2025-55330 | 6.10 | Omzeilen van beveiligingsmaatregel | | CVE-2025-55332 | 6.10 | Omzeilen van beveiligingsmaatregel | | CVE-2025-55337 | 6.10 | Omzeilen van beveiligingsmaatregel | | CVE-2025-55682 | 6.10 | Omzeilen van beveiligingsmaatregel | |----------------|------|-------------------------------------| NtQueryInformation Token function (ntifs.h): |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-55696 | 7.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows USB Video Driver: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-55676 | 5.50 | Toegang tot gevoelige gegevens | |----------------|------|-------------------------------------| Windows Ancillary Function Driver for WinSock: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59242 | 7.80 | Verkrijgen van verhoogde rechten | | CVE-2025-58714 | 7.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Azure Local: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-55697 | 7.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows Local Session Manager (LSM): |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59257 | 6.50 | Denial-of-Service | | CVE-2025-59259 | 6.50 | Denial-of-Service | | CVE-2025-58729 | 6.50 | Denial-of-Service | |----------------|------|-------------------------------------| Windows Resilient File System (ReFS) Deduplication Service: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59206 | 7.40 | Verkrijgen van verhoogde rechten | | CVE-2025-59210 | 7.40 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows Virtualization-Based Security (VBS) Enclave: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-53717 | 7.00 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows Cloud Files Mini Filter Driver: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-55336 | 5.50 | Toegang tot gevoelige gegevens | | CVE-2025-55680 | 8.40 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows WLAN Auto Config Service: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-55695 | 5.50 | Toegang tot gevoelige gegevens | |----------------|------|-------------------------------------| Software Protection Platform (SPP): |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59199 | 8.40 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows Cryptographic Services: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-58720 | 7.80 | Toegang tot gevoelige gegevens | |----------------|------|-------------------------------------| Remote Desktop Client: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-58718 | 8.80 | Uitvoeren van willekeurige code | |----------------|------|-------------------------------------| Windows StateRepository API: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59203 | 5.50 | Toegang tot gevoelige gegevens | |----------------|------|-------------------------------------| Microsoft Windows Search Component: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59190 | 5.50 | Denial-of-Service | | CVE-2025-59198 | 5.00 | Denial-of-Service | | CVE-2025-59253 | 5.50 | Denial-of-Service | |----------------|------|-------------------------------------| Windows Failover Cluster: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-47979 | 5.50 | Toegang tot gevoelige gegevens | | CVE-2025-59188 | 5.50 | Toegang tot gevoelige gegevens | |----------------|------|-------------------------------------| Windows SMB Client: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59280 | 3.10 | Manipulatie van gegevens | |----------------|------|-------------------------------------| Windows Secure Boot: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-47827 | 4.60 | Omzeilen van beveiligingsmaatregel | |----------------|------|-------------------------------------| Microsoft PowerShell: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-25004 | 7.30 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Microsoft Windows: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-55701 | 7.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Microsoft Windows Codecs Library: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-54957 | 7.00 | Uitvoeren van willekeurige code | |----------------|------|-------------------------------------| Windows Error Reporting: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-55692 | 7.80 | Verkrijgen van verhoogde rechten | | CVE-2025-55694 | 7.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows SSDP Service: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59196 | 7.00 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Storport.sys Driver: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59192 | 7.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows Remote Desktop Protocol: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-55340 | 7.00 | Omzeilen van beveiligingsmaatregel | |----------------|------|-------------------------------------| Windows Connected Devices Platform Service: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-58727 | 7.00 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows NDIS: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-55339 | 7.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows Health and Optimized Experiences Service: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59241 | 7.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows Remote Desktop Services: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59202 | 7.00 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows High Availability Services: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59184 | 5.50 | Toegang tot gevoelige gegevens | |----------------|------|-------------------------------------| Microsoft Brokering File System: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-48004 | 7.40 | Verkrijgen van verhoogde rechten | | CVE-2025-59189 | 7.40 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows DWM Core Library: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59254 | 7.80 | Verkrijgen van verhoogde rechten | | CVE-2025-59255 | 7.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows Digital Media: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-53150 | 7.80 | Verkrijgen van verhoogde rechten | | CVE-2025-50175 | 7.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows Hello: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-53139 | 7.70 | Omzeilen van beveiligingsmaatregel | |----------------|------|-------------------------------------| Connected Devices Platform Service (Cdpsvc): |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-58719 | 4.70 | Verkrijgen van verhoogde rechten | | CVE-2025-55326 | 7.50 | Uitvoeren van willekeurige code | | CVE-2025-59191 | 7.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows Device Association Broker service: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-50174 | 7.00 | Verkrijgen van verhoogde rechten | | CVE-2025-55677 | 7.80 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows Bluetooth Service: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-58728 | 7.80 | Verkrijgen van verhoogde rechten | | CVE-2025-59290 | 7.80 | Verkrijgen van verhoogde rechten | | CVE-2025-59289 | 7.00 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows Storage Management Provider: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-55325 | 5.50 | Toegang tot gevoelige gegevens | |----------------|------|-------------------------------------| Windows Management Services: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59204 | 5.50 | Toegang tot gevoelige gegevens | | CVE-2025-59193 | 7.00 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| Windows Remote Desktop: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-58737 | 7.00 | Uitvoeren van willekeurige code | |----------------|------|-------------------------------------| Microsoft Graphics Component: |----------------|------|-------------------------------------| | CVE-ID | CVSS | Impact | |----------------|------|-------------------------------------| | CVE-2025-59195 | 7.00 | Denial-of-Service | | CVE-2025-49708 | 9.90 | Uitvoeren van willekeurige code | | CVE-2016-9535 | 4.00 | Uitvoeren van willekeurige code | | CVE-2025-59205 | 7.00 | Verkrijgen van verhoogde rechten | | CVE-2025-59261 | 7.00 | Verkrijgen van verhoogde rechten | |----------------|------|-------------------------------------| ``` **Update**: Het NCSC heeft van een vertrouwde partner vernomen dat op 24 oktober 2025 misbruik van CVE-2025-59287 is waargenomen. Tevens is er publieke proof-of-conceptcode beschikbaar voor de betreffende CVE, wat het risico op misbruik verhoogt. Het is goed gebruik om WSUS niet direct aan het internet te ontsluiten.

Oplossingen

Microsoft heeft updates beschikbaar gesteld waarmee de beschreven kwetsbaarheden worden verholpen. We raden u aan om deze updates te installeren. Meer informatie over de kwetsbaarheden, de installatie van de updates en eventuele work-arounds vindt u op: https://portal.msrc.microsoft.com/en-us/security-guidance Voor aanvullende informatie en eventuele workarounds met betrekking tot de kwetsbaarheid met kenmerk CVE-2025-59287 heeft microsoft de informatie bij deze kwetsbaarheid geactualiseerd. Zie de detailpagina op: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59287

Kans

high

Schade

high

CWE-20

Improper Input Validation

CWE-59

Improper Link Resolution Before File Access ('Link Following')

CWE-73

External Control of File Name or Path

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CWE-121

Stack-based Buffer Overflow

CWE-122

Heap-based Buffer Overflow

CWE-125

Out-of-bounds Read

CWE-126

Buffer Over-read

CWE-190

Integer Overflow or Wraparound

CWE-191

Integer Underflow (Wrap or Wraparound)

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

CWE-209

Generation of Error Message Containing Sensitive Information

CWE-284

Improper Access Control

CWE-287

Improper Authentication

CWE-312

Cleartext Storage of Sensitive Information

CWE-319

Cleartext Transmission of Sensitive Information

CWE-324

Use of a Key Past its Expiration Date

CWE-347

Improper Verification of Cryptographic Signature

CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

CWE-367

Time-of-check Time-of-use (TOCTOU) Race Condition

CWE-415

Double Free

CWE-416

Use After Free

CWE-476

NULL Pointer Dereference

CWE-502

Deserialization of Untrusted Data

CWE-532

Insertion of Sensitive Information into Log File

CWE-807

Reliance on Untrusted Inputs in a Security Decision

CWE-822

Untrusted Pointer Dereference

CWE-841

Improper Enforcement of Behavioral Workflow

CWE-908

Use of Uninitialized Resource

CWE-1023

Incomplete Comparison with Missing Factors

CWE-1240

Use of a Cryptographic Primitive with a Risky Implementation

CWE-1287

Improper Validation of Specified Type of Input

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "nl",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
      },
      {
        "category": "description",
        "text": "Microsoft heeft kwetsbaarheden verholpen in Windows.",
        "title": "Feiten"
      },
      {
        "category": "description",
        "text": "Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot de volgende categorie\u00ebn schade:\n\n- Denial-of-Service\n- Omzeilen van een beveiligingsmaatregel\n- Manipulatie van gegevens\n- Uitvoeren van willekeurige code (gebruikersrechten)\n- Uitvoeren van willekeurige code (root/adminrechten)\n- Toegang tot gevoelige gegevens\n- Verkrijgen van verhoogde rechten\n- Spoofing\n\nDe ernstigste kwetsbaarheden hebben de kenmerken CVE-2025-49708 en CVE-2025-59287 toegewezen gekregen.\nDe kwetsbaarheid met kenmerk CVE-2025-49708 bevindt zich in de Graphics Component en stelt een kwaadwillende in staat om uit een Virtual Machine (VM) te breken en acties uit te voeren op de onderliggende Host.\nDe kwetsbaarheid met kenmerk CVE-2025-59287 bevindt zich in de Windows Server Update Servce (WSUS) en stelt een kwaadwillende in staat om op afstand willekeurige code uit te voeren op het kwetsbare systeem.\n\nVan de kwetsbaarheid met kenmerk CVE-2025-59230 meldt Microsoft informatie te hebben dat deze actief is misbruikt op verouderde systemen. De kwetsbaarheid bevindt zich in de Remote Access Connection Manager stelt een lokale, geauthenticeerde kwaadwillende in staat om zich SYSTEM-rechten toe te kennen en zo mogelijk willekeurige code uit te voeren als SYSTEM\n\n**Update:** \n\nHet NCSC heeft van een vertrouwde partner vernomen dat op 24 oktober 2025 misbruik van de kwetsbaarheid met kenmerk CVE-2025-59287 is waargenomen. Deze kwetsbaarheid bevindt zich in de WSUS-service en stelt een kwaadwillende in staat om willekeurige code uit te voeren op het kwetsbare systeem. Het is niet gebruikelijk een WSUS service publiek via internet toegankelijk te hebben.\nInmiddels is er publieke proof-of-conceptcode beschikbaar voor de betreffende kwetsbaarheid, wat het risico op misbruik verhoogt.\n\n**De in deze Patch-Tuesday update uitgebrachte oplossing voor deze kwetsbaarheid blijkt niet afdoende te zijn. Microsoft heeft hiervoor een out-of-band patch uitgebracht die zo spoedig mogelijk aanvullend op de Patch-Tuesday update dient te worden ingezet.**\n\n```\nWindows Confidential Virtual Machines (CVM): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-48813 | 6.30 | Voordoen als andere gebruiker       | \n|----------------|------|-------------------------------------|\n\nWindows Resilient File System (ReFS): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-55687 | 7.40 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows DirectX: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-55678 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-55698 | 7.70 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\n\nWindows DWM: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-55681 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-58722 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nXbox: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-53768 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Kernel: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59186 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2025-59207 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-50152 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-55334 | 6.20 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2025-55679 | 5.10 | Toegang tot gevoelige gegevens      | \n| CVE-2025-55683 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2025-55693 | 7.40 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-55699 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2025-59187 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-59194 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Routing and Remote Access Service (RRAS): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-55700 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2025-58717 | 6.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nInbox COM Objects: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-58732 | 7.00 | Uitvoeren van willekeurige code     | \n| CVE-2025-58735 | 7.00 | Uitvoeren van willekeurige code     | \n| CVE-2025-59282 | 7.00 | Uitvoeren van willekeurige code     | \n| CVE-2025-58730 | 7.00 | Uitvoeren van willekeurige code     | \n| CVE-2025-58731 | 7.00 | Uitvoeren van willekeurige code     | \n| CVE-2025-58733 | 7.00 | Uitvoeren van willekeurige code     | \n| CVE-2025-58734 | 7.00 | Uitvoeren van willekeurige code     | \n| CVE-2025-58736 | 7.00 | Uitvoeren van willekeurige code     | \n| CVE-2025-58738 | 7.00 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nAgere Windows Modem Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-24990 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-24052 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nActive Directory Federation Services: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59258 | 6.20 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Push Notification Core: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59211 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2025-59209 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Authentication Methods: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59277 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-59275 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-59278 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows File Explorer: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-58739 | 6.50 | Voordoen als andere gebruiker       | \n| CVE-2025-59214 | 6.50 | Voordoen als andere gebruiker       | \n|----------------|------|-------------------------------------|\n\nData Sharing Service Client: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59200 | 7.70 | Voordoen als andere gebruiker       | \n|----------------|------|-------------------------------------|\n\nWindows Hyper-V: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-55328 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows NTFS: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-55335 | 7.40 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows ETL Channel: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59197 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nMicrosoft Failover Cluster Virtual Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59260 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Server Update Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59287 | 9.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nMicrosoft Windows Speech: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-58715 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-58716 | 8.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows NTLM: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59284 | 3.30 | Voordoen als andere gebruiker       | \n|----------------|------|-------------------------------------|\n\nWindows COM: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-58725 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nNetwork Connection Status Indicator (NCSI): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59201 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nTCG TPM2.0: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-2884  | 5.30 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows MapUrlToZone: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59208 | 7.10 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nInternet Explorer: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59295 | 8.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Core Shell: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59185 | 6.50 | Voordoen als andere gebruiker       | \n| CVE-2025-59244 | 6.50 | Voordoen als andere gebruiker       | \n|----------------|------|-------------------------------------|\n\nWindows SMB Server: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-58726 | 7.50 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Remote Access Connection Manager: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59230 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows PrintWorkflowUserSvc: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-55685 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-55686 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-55689 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-55331 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-55684 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-55688 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-55690 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-55691 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Taskbar Live: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59294 | 2.10 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows BitLocker: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-55333 | 6.10 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2025-55338 | 6.10 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2025-55330 | 6.10 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2025-55332 | 6.10 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2025-55337 | 6.10 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2025-55682 | 6.10 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\nNtQueryInformation Token function (ntifs.h): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-55696 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows USB Video Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-55676 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Ancillary Function Driver for WinSock: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59242 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-58714 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nAzure Local: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-55697 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Local Session Manager (LSM): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59257 | 6.50 | Denial-of-Service                   | \n| CVE-2025-59259 | 6.50 | Denial-of-Service                   | \n| CVE-2025-58729 | 6.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nWindows Resilient File System (ReFS) Deduplication Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59206 | 7.40 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-59210 | 7.40 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Virtualization-Based Security (VBS) Enclave: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-53717 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Cloud Files Mini Filter Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-55336 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2025-55680 | 8.40 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows WLAN Auto Config Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-55695 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nSoftware Protection Platform (SPP): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59199 | 8.40 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Cryptographic Services: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-58720 | 7.80 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nRemote Desktop Client: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-58718 | 8.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows StateRepository API: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59203 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nMicrosoft Windows Search Component: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59190 | 5.50 | Denial-of-Service                   | \n| CVE-2025-59198 | 5.00 | Denial-of-Service                   | \n| CVE-2025-59253 | 5.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nWindows Failover Cluster: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-47979 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2025-59188 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows SMB Client: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59280 | 3.10 | Manipulatie van gegevens            | \n|----------------|------|-------------------------------------|\n\nWindows Secure Boot: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-47827 | 4.60 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\nMicrosoft PowerShell: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-25004 | 7.30 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Windows: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-55701 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Windows Codecs Library: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-54957 | 7.00 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Error Reporting: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-55692 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-55694 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows SSDP Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59196 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nStorport.sys Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59192 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Remote Desktop Protocol: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-55340 | 7.00 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\nWindows Connected Devices Platform Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-58727 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows NDIS: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-55339 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Health and Optimized Experiences Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59241 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Remote Desktop Services: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59202 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows High Availability Services: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59184 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nMicrosoft Brokering File System: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-48004 | 7.40 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-59189 | 7.40 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows DWM Core Library: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59254 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-59255 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Digital Media: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-53150 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-50175 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Hello: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-53139 | 7.70 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\nConnected Devices Platform Service (Cdpsvc): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-58719 | 4.70 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-55326 | 7.50 | Uitvoeren van willekeurige code     | \n| CVE-2025-59191 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Device Association Broker service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-50174 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-55677 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Bluetooth Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-58728 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-59290 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-59289 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Storage Management Provider: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-55325 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Management Services: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59204 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2025-59193 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Remote Desktop: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-58737 | 7.00 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nMicrosoft Graphics Component: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-59195 | 7.00 | Denial-of-Service                   | \n| CVE-2025-49708 | 9.90 | Uitvoeren van willekeurige code     | \n| CVE-2016-9535  | 4.00 | Uitvoeren van willekeurige code     | \n| CVE-2025-59205 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2025-59261 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n```\n\n\n**Update**: \nHet NCSC heeft van een vertrouwde partner vernomen dat op 24 oktober 2025 misbruik van CVE-2025-59287 is waargenomen. Tevens is er publieke proof-of-conceptcode beschikbaar voor de betreffende CVE, wat het risico op misbruik verhoogt. Het is goed gebruik om WSUS niet direct aan het internet te ontsluiten.",
        "title": "Interpretaties"
      },
      {
        "category": "description",
        "text": "Microsoft heeft updates beschikbaar gesteld waarmee de beschreven kwetsbaarheden worden verholpen. We raden u aan om deze updates te installeren. Meer informatie over de kwetsbaarheden, de installatie van de updates en eventuele work-arounds vindt u op:\n\nhttps://portal.msrc.microsoft.com/en-us/security-guidance\n\nVoor aanvullende informatie en eventuele workarounds met betrekking tot de kwetsbaarheid met kenmerk CVE-2025-59287 heeft microsoft de informatie bij deze kwetsbaarheid geactualiseerd. Zie de detailpagina op:\n\nhttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59287",
        "title": "Oplossingen"
      },
      {
        "category": "general",
        "text": "high",
        "title": "Kans"
      },
      {
        "category": "general",
        "text": "high",
        "title": "Schade"
      },
      {
        "category": "general",
        "text": "Improper Input Validation",
        "title": "CWE-20"
      },
      {
        "category": "general",
        "text": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
        "title": "CWE-59"
      },
      {
        "category": "general",
        "text": "External Control of File Name or Path",
        "title": "CWE-73"
      },
      {
        "category": "general",
        "text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
        "title": "CWE-119"
      },
      {
        "category": "general",
        "text": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
        "title": "CWE-120"
      },
      {
        "category": "general",
        "text": "Stack-based Buffer Overflow",
        "title": "CWE-121"
      },
      {
        "category": "general",
        "text": "Heap-based Buffer Overflow",
        "title": "CWE-122"
      },
      {
        "category": "general",
        "text": "Out-of-bounds Read",
        "title": "CWE-125"
      },
      {
        "category": "general",
        "text": "Buffer Over-read",
        "title": "CWE-126"
      },
      {
        "category": "general",
        "text": "Integer Overflow or Wraparound",
        "title": "CWE-190"
      },
      {
        "category": "general",
        "text": "Integer Underflow (Wrap or Wraparound)",
        "title": "CWE-191"
      },
      {
        "category": "general",
        "text": "Exposure of Sensitive Information to an Unauthorized Actor",
        "title": "CWE-200"
      },
      {
        "category": "general",
        "text": "Generation of Error Message Containing Sensitive Information",
        "title": "CWE-209"
      },
      {
        "category": "general",
        "text": "Improper Access Control",
        "title": "CWE-284"
      },
      {
        "category": "general",
        "text": "Improper Authentication",
        "title": "CWE-287"
      },
      {
        "category": "general",
        "text": "Cleartext Storage of Sensitive Information",
        "title": "CWE-312"
      },
      {
        "category": "general",
        "text": "Cleartext Transmission of Sensitive Information",
        "title": "CWE-319"
      },
      {
        "category": "general",
        "text": "Use of a Key Past its Expiration Date",
        "title": "CWE-324"
      },
      {
        "category": "general",
        "text": "Improper Verification of Cryptographic Signature",
        "title": "CWE-347"
      },
      {
        "category": "general",
        "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
        "title": "CWE-362"
      },
      {
        "category": "general",
        "text": "Time-of-check Time-of-use (TOCTOU) Race Condition",
        "title": "CWE-367"
      },
      {
        "category": "general",
        "text": "Double Free",
        "title": "CWE-415"
      },
      {
        "category": "general",
        "text": "Use After Free",
        "title": "CWE-416"
      },
      {
        "category": "general",
        "text": "NULL Pointer Dereference",
        "title": "CWE-476"
      },
      {
        "category": "general",
        "text": "Deserialization of Untrusted Data",
        "title": "CWE-502"
      },
      {
        "category": "general",
        "text": "Insertion of Sensitive Information into Log File",
        "title": "CWE-532"
      },
      {
        "category": "general",
        "text": "Reliance on Untrusted Inputs in a Security Decision",
        "title": "CWE-807"
      },
      {
        "category": "general",
        "text": "Untrusted Pointer Dereference",
        "title": "CWE-822"
      },
      {
        "category": "general",
        "text": "Improper Enforcement of Behavioral Workflow",
        "title": "CWE-841"
      },
      {
        "category": "general",
        "text": "Use of Uninitialized Resource",
        "title": "CWE-908"
      },
      {
        "category": "general",
        "text": "Incomplete Comparison with Missing Factors",
        "title": "CWE-1023"
      },
      {
        "category": "general",
        "text": "Use of a Cryptographic Primitive with a Risky Implementation",
        "title": "CWE-1240"
      },
      {
        "category": "general",
        "text": "Improper Validation of Specified Type of Input",
        "title": "CWE-1287"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "cert@ncsc.nl",
      "name": "Nationaal Cyber Security Centrum",
      "namespace": "https://www.ncsc.nl/"
    },
    "references": [
      {
        "category": "external",
        "summary": "Reference",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59287"
      }
    ],
    "title": "Kwetsbaarheden verholpen in Microsoft Windows",
    "tracking": {
      "current_release_date": "2025-10-24T11:09:29.790442Z",
      "generator": {
        "date": "2025-08-04T16:30:00Z",
        "engine": {
          "name": "V.A.",
          "version": "1.3"
        }
      },
      "id": "NCSC-2025-0310",
      "initial_release_date": "2025-10-14T18:03:45.875739Z",
      "revision_history": [
        {
          "date": "2025-10-14T18:03:45.875739Z",
          "number": "1.0.0",
          "summary": "Initiele versie"
        },
        {
          "date": "2025-10-24T08:24:42.569331Z",
          "number": "1.0.1",
          "summary": "Het NCSC heeft van een vertrouwde partner vernomen dat op 24 oktober 2025 misbruik van CVE-2025-59287 is waargenomen. Tevens is er publieke proof-of-conceptcode beschikbaar voor de betreffende CVE, wat het risico op misbruik verhoogt. Het is goed gebruik om WSUS niet direct aan het internet te ontsluiten."
        },
        {
          "date": "2025-10-24T11:09:29.790442Z",
          "number": "1.0.2",
          "summary": "De originele update om de kwetsbaarheid met kenmerk CVE-2025-59287 te verhelpen blijkt niet afdoende. Microsoft heeft een Out-of-Band patch uitgebracht om additionele oplossingen te bieden. "
        }
      ],
      "status": "final",
      "version": "1.0.2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-1"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows 10 1809"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-2"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows 10 21h2"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-3"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows 10 22h2"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-4"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows 10 Version 1507"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-5"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows 10 Version 1607"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-6"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows 10 Version 1809"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-7"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows 10 Version 21H2"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-8"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows 10 Version 22H2"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-9"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows 11 22H2"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-10"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows 11 23H2"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-11"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows 11 Version 23H2"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-12"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows 11 Version 24H2"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-13"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows 11 Version 25H2"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-14"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows 11 version 22H2"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-15"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows 11 version 22H3"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-16"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows Server 2008 R2 Service Pack 1"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-17"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-18"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows Server 2008 Service Pack 2"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-19"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows Server 2008 Service Pack 2 (Server Core installation)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-20"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows Server 2012"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-21"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows Server 2012 (Server Core installation)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-22"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows Server 2012 R2"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-23"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows Server 2012 R2 (Server Core installation)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-24"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows Server 2016"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-25"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows Server 2016 (Server Core installation)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-26"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows Server 2019"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-27"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows Server 2019 (Server Core installation)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-28"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows Server 2022"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-29"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows Server 2022, 23H2 Edition (Server Core installation)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-30"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows Server 2025"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-31"
                }
              }
            ],
            "category": "product_name",
            "name": "Windows Server 2025 (Server Core installation)"
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-59258",
      "cwe": {
        "id": "CWE-532",
        "name": "Insertion of Sensitive Information into Log File"
      },
      "notes": [
        {
          "category": "other",
          "text": "Insertion of Sensitive Information into Log File",
          "title": "CWE-532"
        },
        {
          "category": "description",
          "text": "In Active Directory Federation Services, sensitive information logged can be exploited by unauthorized attackers, leading to potential local disclosure of confidential data.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59258 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59258.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59258"
    },
    {
      "cve": "CVE-2025-47979",
      "cwe": {
        "id": "CWE-532",
        "name": "Insertion of Sensitive Information into Log File"
      },
      "notes": [
        {
          "category": "other",
          "text": "Insertion of Sensitive Information into Log File",
          "title": "CWE-532"
        },
        {
          "category": "description",
          "text": "In a Windows Failover Cluster, sensitive information logged can be exploited by authorized attackers to disclose confidential data locally.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-47979 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-47979.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-47979"
    },
    {
      "cve": "CVE-2025-55683",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        },
        {
          "category": "description",
          "text": "The exposure of sensitive information in the Windows Kernel allows authorized attackers to locally disclose confidential data, posing a significant security risk.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55683 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55683.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55683"
    },
    {
      "cve": "CVE-2025-55697",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Heap-based Buffer Overflow",
          "title": "CWE-122"
        },
        {
          "category": "description",
          "text": "A heap-based buffer overflow vulnerability in Azure Local allows an authorized attacker to locally elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55697 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55697.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55697"
    },
    {
      "cve": "CVE-2025-58737",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows Remote Desktop, termed \u0027use after free,\u0027 allows unauthorized attackers to execute arbitrary code on the local system.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58737 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58737.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58737"
    },
    {
      "cve": "CVE-2025-59184",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows High Availability Services allows an authorized attacker to locally disclose sensitive information to unauthorized individuals.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59184 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59184.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59184"
    },
    {
      "cve": "CVE-2025-59188",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows Failover Cluster allows an authorized attacker to expose sensitive information to unauthorized individuals locally.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59188 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59188.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59188"
    },
    {
      "cve": "CVE-2025-59260",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        },
        {
          "category": "description",
          "text": "A vulnerability in the Microsoft Failover Cluster Virtual Driver allows an authorized attacker to locally disclose sensitive information.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59260 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59260.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59260"
    },
    {
      "cve": "CVE-2025-59287",
      "cwe": {
        "id": "CWE-502",
        "name": "Deserialization of Untrusted Data"
      },
      "notes": [
        {
          "category": "other",
          "text": "Deserialization of Untrusted Data",
          "title": "CWE-502"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows Server Update Service allows unauthorized attackers to remotely execute code through the deserialization of untrusted data.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59287 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59287.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59287"
    },
    {
      "cve": "CVE-2025-48004",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in the Microsoft Brokering File System enables unauthorized attackers to locally elevate their privileges due to a use-after-free error.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-48004 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48004.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-48004"
    },
    {
      "cve": "CVE-2025-50174",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in the Windows Device Association Broker service enables an authorized attacker to locally elevate privileges via a use-after-free exploit.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-50174 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-50174.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-50174"
    },
    {
      "cve": "CVE-2025-24990",
      "cwe": {
        "id": "CWE-822",
        "name": "Untrusted Pointer Dereference"
      },
      "notes": [
        {
          "category": "other",
          "text": "Untrusted Pointer Dereference",
          "title": "CWE-822"
        },
        {
          "category": "description",
          "text": "Microsoft\u0027s October cumulative update removes the ltmdm64.sys driver for the Agere Modem, disabling dependent fax modem hardware and addressing a vulnerability that allows privilege escalation.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-24990 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-24990.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-24990"
    },
    {
      "cve": "CVE-2025-24052",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Stack-based Buffer Overflow",
          "title": "CWE-121"
        },
        {
          "category": "description",
          "text": "Microsoft has removed the ltmdm64.sys driver due to vulnerabilities in the Agere Modem driver, rendering fax modem hardware dependent on this driver non-functional on Windows.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-24052 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-24052.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-24052"
    },
    {
      "cve": "CVE-2025-55325",
      "cwe": {
        "id": "CWE-126",
        "name": "Buffer Over-read"
      },
      "notes": [
        {
          "category": "other",
          "text": "Buffer Over-read",
          "title": "CWE-126"
        },
        {
          "category": "description",
          "text": "A buffer over-read vulnerability in the Windows Storage Management Provider allows an authorized attacker to locally disclose sensitive information.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55325 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55325.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55325"
    },
    {
      "cve": "CVE-2025-55333",
      "cwe": {
        "id": "CWE-1023",
        "name": "Incomplete Comparison with Missing Factors"
      },
      "notes": [
        {
          "category": "other",
          "text": "Incomplete Comparison with Missing Factors",
          "title": "CWE-1023"
        },
        {
          "category": "description",
          "text": "An incomplete comparison in Windows BitLocker may allow unauthorized attackers to exploit security features through physical attacks.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55333 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55333.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55333"
    },
    {
      "cve": "CVE-2025-55335",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
          "title": "CWE-362"
        },
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows NTFS enables unauthorized attackers to locally elevate their privileges through a use-after-free exploit.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55335 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55335.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55335"
    },
    {
      "cve": "CVE-2025-55336",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        },
        {
          "category": "description",
          "text": "A vulnerability in the Windows Cloud Files Mini Filter Driver allows an authorized attacker to expose sensitive information to unauthorized local actors.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55336 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55336.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55336"
    },
    {
      "cve": "CVE-2025-55338",
      "cwe": {
        "id": "CWE-288",
        "name": "Authentication Bypass Using an Alternate Path or Channel"
      },
      "notes": [
        {
          "category": "other",
          "text": "Authentication Bypass Using an Alternate Path or Channel",
          "title": "CWE-288"
        },
        {
          "category": "description",
          "text": "The document highlights a vulnerability in Windows BitLocker that allows unauthorized attackers to bypass security features through physical attacks due to unpatchable ROM code.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55338 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55338.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55338"
    },
    {
      "cve": "CVE-2025-55339",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "description",
          "text": "An out-of-bounds read vulnerability in Windows NDIS allows an authorized attacker to locally elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55339 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55339.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55339"
    },
    {
      "cve": "CVE-2025-55340",
      "cwe": {
        "id": "CWE-287",
        "name": "Improper Authentication"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Authentication",
          "title": "CWE-287"
        },
        {
          "category": "description",
          "text": "Improper authentication in Windows Remote Desktop Protocol allows an authorized attacker to bypass a security feature locally.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55340 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55340.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55340"
    },
    {
      "cve": "CVE-2025-55676",
      "cwe": {
        "id": "CWE-209",
        "name": "Generation of Error Message Containing Sensitive Information"
      },
      "notes": [
        {
          "category": "other",
          "text": "Generation of Error Message Containing Sensitive Information",
          "title": "CWE-209"
        },
        {
          "category": "description",
          "text": "The Windows USB Video Driver may produce an error message that discloses sensitive information, potentially enabling local access by an authorized attacker.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55676 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55676.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55676"
    },
    {
      "cve": "CVE-2025-55677",
      "cwe": {
        "id": "CWE-822",
        "name": "Untrusted Pointer Dereference"
      },
      "notes": [
        {
          "category": "other",
          "text": "Untrusted Pointer Dereference",
          "title": "CWE-822"
        },
        {
          "category": "description",
          "text": "A vulnerability in the Windows Device Association Broker service allows an authorized attacker to locally elevate their privileges through an untrusted pointer dereference.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55677 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55677.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55677"
    },
    {
      "cve": "CVE-2025-55681",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "other",
          "text": "Untrusted Pointer Dereference",
          "title": "CWE-822"
        },
        {
          "category": "description",
          "text": "An out-of-bounds read vulnerability in Windows DWM allows an authorized attacker to locally elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55681 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55681.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55681"
    },
    {
      "cve": "CVE-2025-55685",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows PrintWorkflowUserSvc enables an authorized attacker to locally elevate privileges via a use-after-free exploit.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55685 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55685.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55685"
    },
    {
      "cve": "CVE-2025-55686",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows PrintWorkflowUserSvc enables an authorized attacker to locally elevate privileges via a use-after-free exploit.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55686 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55686.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55686"
    },
    {
      "cve": "CVE-2025-55687",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
          "title": "CWE-362"
        },
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A race condition in the Windows Resilient File System (ReFS) due to improper synchronization can allow unauthorized attackers to locally elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55687 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55687.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55687"
    },
    {
      "cve": "CVE-2025-55689",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows PrintWorkflowUserSvc enables an authorized attacker to locally elevate privileges via a use-after-free exploit.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55689 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55689.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55689"
    },
    {
      "cve": "CVE-2025-55700",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "description",
          "text": "An out-of-bounds read vulnerability in Windows Routing and Remote Access Service (RRAS) could allow unauthorized attackers to disclose sensitive information over a network.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55700 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55700.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55700"
    },
    {
      "cve": "CVE-2025-55701",
      "cwe": {
        "id": "CWE-1287",
        "name": "Improper Validation of Specified Type of Input"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Validation of Specified Type of Input",
          "title": "CWE-1287"
        },
        {
          "category": "description",
          "text": "An authorized attacker can exploit improper input validation in Microsoft Windows to locally elevate privileges, potentially compromising system integrity.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55701 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55701.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55701"
    },
    {
      "cve": "CVE-2025-58715",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "notes": [
        {
          "category": "other",
          "text": "Integer Overflow or Wraparound",
          "title": "CWE-190"
        },
        {
          "category": "description",
          "text": "An integer overflow vulnerability in Microsoft Windows Speech allows an authorized attacker to locally elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58715 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58715.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58715"
    },
    {
      "cve": "CVE-2025-58716",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "description",
          "text": "Improper input validation in Microsoft Windows Speech allows an authorized attacker to locally elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58716 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58716.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58716"
    },
    {
      "cve": "CVE-2025-58717",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "description",
          "text": "An out-of-bounds read vulnerability in Windows Routing and Remote Access Service (RRAS) could allow unauthorized attackers to disclose sensitive information over a network.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58717 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58717.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58717"
    },
    {
      "cve": "CVE-2025-58719",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in the Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to locally elevate their privileges through a use-after-free exploit.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58719 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58719.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58719"
    },
    {
      "cve": "CVE-2025-58722",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Heap-based Buffer Overflow",
          "title": "CWE-122"
        },
        {
          "category": "description",
          "text": "A heap-based buffer overflow vulnerability in Windows DWM allows an authorized attacker to locally elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58722 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58722.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58722"
    },
    {
      "cve": "CVE-2025-58728",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in the Windows Bluetooth Service enables an authorized attacker to locally elevate privileges via a use-after-free exploit.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58728 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58728.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58728"
    },
    {
      "cve": "CVE-2025-58732",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "The document highlights a vulnerability in Inbox COM Objects that allows unauthorized code execution locally due to a use-after-free flaw.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58732 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58732.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58732"
    },
    {
      "cve": "CVE-2025-58735",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "The document highlights a vulnerability in Inbox COM Objects that allows unauthorized code execution locally due to a use-after-free flaw.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58735 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58735.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58735"
    },
    {
      "cve": "CVE-2025-59185",
      "cwe": {
        "id": "CWE-73",
        "name": "External Control of File Name or Path"
      },
      "notes": [
        {
          "category": "other",
          "text": "External Control of File Name or Path",
          "title": "CWE-73"
        },
        {
          "category": "description",
          "text": "Unauthorized attackers can exploit external control of file names or paths in Windows Core Shell to execute spoofing attacks over a network.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59185 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59185.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59185"
    },
    {
      "cve": "CVE-2025-59195",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
          "title": "CWE-362"
        },
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A race condition in the Microsoft Graphics Component allows an authorized attacker to locally deny service by mismanaging shared resources during concurrent execution.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59195 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59195.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59195"
    },
    {
      "cve": "CVE-2025-59196",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
          "title": "CWE-362"
        },
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A race condition in the Windows SSDP Service allows an authorized attacker to locally elevate their privileges due to improper synchronization of shared resources.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59196 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59196.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59196"
    },
    {
      "cve": "CVE-2025-59199",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Access Control",
          "title": "CWE-284"
        },
        {
          "category": "description",
          "text": "An improper access control vulnerability in the Software Protection Platform (SPP) allows an authorized attacker to locally escalate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59199 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59199.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59199"
    },
    {
      "cve": "CVE-2025-59200",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
          "title": "CWE-362"
        },
        {
          "category": "other",
          "text": "External Control of File Name or Path",
          "title": "CWE-73"
        },
        {
          "category": "description",
          "text": "A race condition in the Data Sharing Service Client due to improper synchronization enables unauthorized attackers to spoof locally, posing a significant security risk.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59200 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59200.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59200"
    },
    {
      "cve": "CVE-2025-59201",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Access Control",
          "title": "CWE-284"
        },
        {
          "category": "description",
          "text": "Improper access control in the Network Connection Status Indicator (NCSI) allows an authorized attacker to locally elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59201 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59201.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59201"
    },
    {
      "cve": "CVE-2025-59202",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows Remote Desktop Services enables an authorized attacker to locally elevate privileges via a use-after-free exploit.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59202 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59202.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59202"
    },
    {
      "cve": "CVE-2025-59204",
      "cwe": {
        "id": "CWE-908",
        "name": "Use of Uninitialized Resource"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use of Uninitialized Resource",
          "title": "CWE-908"
        },
        {
          "category": "description",
          "text": "The document highlights a vulnerability in Windows Management Services that allows an authorized attacker to disclose information locally due to uninitialized resources.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59204 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59204.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59204"
    },
    {
      "cve": "CVE-2025-59206",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "Windows Resilient File System (ReFS) contains a vulnerability in its Deduplication Service that may enable an attacker to elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59206 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59206.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59206"
    },
    {
      "cve": "CVE-2025-59207",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "other",
          "text": "Untrusted Pointer Dereference",
          "title": "CWE-822"
        },
        {
          "category": "description",
          "text": "A vulnerability in the Windows Kernel allows an authorized attacker to exploit an untrusted pointer dereference, enabling local privilege escalation.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59207 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59207.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59207"
    },
    {
      "cve": "CVE-2025-59211",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows Push Notification Core allows an authorized attacker to expose sensitive information to an unauthorized actor locally.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59211 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59211.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59211"
    },
    {
      "cve": "CVE-2025-59242",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Heap-based Buffer Overflow",
          "title": "CWE-122"
        },
        {
          "category": "other",
          "text": "Integer Underflow (Wrap or Wraparound)",
          "title": "CWE-191"
        },
        {
          "category": "description",
          "text": "A heap-based buffer overflow vulnerability in the Windows Ancillary Function Driver for WinSock allows an authorized attacker to locally elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59242 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59242.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59242"
    },
    {
      "cve": "CVE-2025-49708",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in the Microsoft Graphics Component allows an authorized attacker to exploit a use-after-free condition to gain elevated privileges over a network.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-49708 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-49708.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.9,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-49708"
    },
    {
      "cve": "CVE-2025-59254",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Heap-based Buffer Overflow",
          "title": "CWE-122"
        },
        {
          "category": "description",
          "text": "A heap-based buffer overflow vulnerability in the Windows DWM Core Library allows an authorized attacker to locally elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59254 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59254.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59254"
    },
    {
      "cve": "CVE-2025-59255",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Heap-based Buffer Overflow",
          "title": "CWE-122"
        },
        {
          "category": "description",
          "text": "A heap-based buffer overflow vulnerability in the Windows DWM Core Library allows an authorized attacker to locally elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59255 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59255.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59255"
    },
    {
      "cve": "CVE-2025-54957",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "notes": [
        {
          "category": "other",
          "text": "Integer Overflow or Wraparound",
          "title": "CWE-190"
        },
        {
          "category": "other",
          "text": "Deserialization of Untrusted Data",
          "title": "CWE-502"
        },
        {
          "category": "other",
          "text": "Out-of-bounds Write",
          "title": "CWE-787"
        },
        {
          "category": "description",
          "text": "Recent vulnerabilities in Dolby UDC, Microsoft Windows Codecs Library, and Chrome involve integer overflows and deserialization flaws, potentially leading to crashes and unauthorized code execution.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-54957 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-54957.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-54957"
    },
    {
      "cve": "CVE-2025-59257",
      "cwe": {
        "id": "CWE-1287",
        "name": "Improper Validation of Specified Type of Input"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Validation of Specified Type of Input",
          "title": "CWE-1287"
        },
        {
          "category": "description",
          "text": "An attacker can exploit improper input validation in Windows Local Session Manager (LSM) to trigger a denial of service over a network.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59257 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59257.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59257"
    },
    {
      "cve": "CVE-2025-59259",
      "cwe": {
        "id": "CWE-1287",
        "name": "Improper Validation of Specified Type of Input"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Validation of Specified Type of Input",
          "title": "CWE-1287"
        },
        {
          "category": "description",
          "text": "An attacker can exploit improper input validation in Windows Local Session Manager (LSM) to trigger a denial of service over a network.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59259 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59259.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59259"
    },
    {
      "cve": "CVE-2025-59282",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
          "title": "CWE-362"
        },
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A race condition in Inbox COM Objects due to improper synchronization enables unauthorized attackers to execute code locally, posing a significant security risk.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59282 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59282.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59282"
    },
    {
      "cve": "CVE-2025-59284",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        },
        {
          "category": "description",
          "text": "The document highlights a vulnerability in Windows NTLM that allows unauthorized attackers to locally spoof by exposing sensitive information.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59284 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59284.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59284"
    },
    {
      "cve": "CVE-2025-59294",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        },
        {
          "category": "description",
          "text": "The document highlights a vulnerability in Windows Taskbar Live that allows unauthorized attackers to access sensitive information through physical attacks.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59294 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59294.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.1,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59294"
    },
    {
      "cve": "CVE-2025-59295",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Heap-based Buffer Overflow",
          "title": "CWE-122"
        },
        {
          "category": "description",
          "text": "A heap-based buffer overflow vulnerability in Internet Explorer allows unauthorized attackers to execute code remotely, posing significant security risks.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59295 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59295.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59295"
    },
    {
      "cve": "CVE-2016-9535",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Heap-based Buffer Overflow",
          "title": "CWE-122"
        },
        {
          "category": "other",
          "text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
          "title": "CWE-119"
        },
        {
          "category": "other",
          "text": "Dependency on Vulnerable Third-Party Component",
          "title": "CWE-1395"
        },
        {
          "category": "description",
          "text": "The TIFF update addresses critical security vulnerabilities, including heap buffer overflows and remote code execution risks, particularly in libtiff 4.0.6 due to assertion errors in tif_predict.h and tif_predict.c.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2016-9535 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2016/cve-2016-9535.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2016-9535"
    },
    {
      "cve": "CVE-2025-48813",
      "cwe": {
        "id": "CWE-324",
        "name": "Use of a Key Past its Expiration Date"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use of a Key Past its Expiration Date",
          "title": "CWE-324"
        },
        {
          "category": "description",
          "text": "The use of an expired key in Virtual Secure Mode allows an authorized attacker to execute local spoofing attacks.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-48813 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48813.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-48813"
    },
    {
      "cve": "CVE-2025-25004",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Access Control",
          "title": "CWE-284"
        },
        {
          "category": "description",
          "text": "An improper access control vulnerability in Microsoft PowerShell allows an authorized attacker to locally elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-25004 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-25004.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-25004"
    },
    {
      "cve": "CVE-2025-53717",
      "cwe": {
        "id": "CWE-807",
        "name": "Reliance on Untrusted Inputs in a Security Decision"
      },
      "notes": [
        {
          "category": "other",
          "text": "Reliance on Untrusted Inputs in a Security Decision",
          "title": "CWE-807"
        },
        {
          "category": "description",
          "text": "The document highlights a security vulnerability in Windows Virtualization-Based Security (VBS) Enclave, where untrusted inputs can allow an authorized attacker to elevate privileges locally.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-53717 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53717.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-53717"
    },
    {
      "cve": "CVE-2025-50152",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "description",
          "text": "A vulnerability in the Windows Kernel allows an authorized attacker to locally elevate their privileges through an out-of-bounds read.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-50152 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-50152.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-50152"
    },
    {
      "cve": "CVE-2025-53150",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
          "title": "CWE-362"
        },
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows Digital Media allows an authorized attacker to locally elevate their privileges through a use-after-free exploit.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-53150 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53150.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-53150"
    },
    {
      "cve": "CVE-2025-50175",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows Digital Media allows an authorized attacker to locally elevate their privileges through a use-after-free exploit.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-50175 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-50175.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-50175"
    },
    {
      "cve": "CVE-2025-53139",
      "cwe": {
        "id": "CWE-319",
        "name": "Cleartext Transmission of Sensitive Information"
      },
      "notes": [
        {
          "category": "other",
          "text": "Cleartext Transmission of Sensitive Information",
          "title": "CWE-319"
        },
        {
          "category": "description",
          "text": "The cleartext transmission of sensitive information in Windows Hello allows unauthorized local access, undermining its intended security features.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-53139 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53139.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-53139"
    },
    {
      "cve": "CVE-2025-53768",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
          "title": "CWE-362"
        },
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in Xbox enables an authorized attacker to locally elevate their privileges due to a use-after-free issue.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-53768 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53768.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-53768"
    },
    {
      "cve": "CVE-2025-55328",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
          "title": "CWE-362"
        },
        {
          "category": "description",
          "text": "A race condition in Windows Hyper-V allows an authorized attacker to locally elevate their privileges due to improper synchronization of shared resources.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55328 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55328.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55328"
    },
    {
      "cve": "CVE-2025-55330",
      "cwe": {
        "id": "CWE-841",
        "name": "Improper Enforcement of Behavioral Workflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Enforcement of Behavioral Workflow",
          "title": "CWE-841"
        },
        {
          "category": "description",
          "text": "Improper enforcement of behavioral workflow in Windows BitLocker allows unauthorized attackers to exploit physical access and bypass security features.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55330 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55330.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55330"
    },
    {
      "cve": "CVE-2025-55331",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows PrintWorkflowUserSvc enables an authorized attacker to locally elevate privileges via a use-after-free exploit.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55331 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55331.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55331"
    },
    {
      "cve": "CVE-2025-55332",
      "cwe": {
        "id": "CWE-841",
        "name": "Improper Enforcement of Behavioral Workflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Enforcement of Behavioral Workflow",
          "title": "CWE-841"
        },
        {
          "category": "description",
          "text": "Improper enforcement of behavioral workflow in Windows BitLocker allows unauthorized attackers to exploit physical access and bypass security features.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55332 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55332.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55332"
    },
    {
      "cve": "CVE-2025-55334",
      "cwe": {
        "id": "CWE-312",
        "name": "Cleartext Storage of Sensitive Information"
      },
      "notes": [
        {
          "category": "other",
          "text": "Cleartext Storage of Sensitive Information",
          "title": "CWE-312"
        },
        {
          "category": "description",
          "text": "The Windows Kernel\u0027s storage of sensitive information in cleartext allows local attackers to bypass security measures, posing a significant risk to system integrity.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55334 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55334.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55334"
    },
    {
      "cve": "CVE-2025-55337",
      "cwe": {
        "id": "CWE-841",
        "name": "Improper Enforcement of Behavioral Workflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Enforcement of Behavioral Workflow",
          "title": "CWE-841"
        },
        {
          "category": "description",
          "text": "Improper enforcement of behavioral workflow in Windows BitLocker allows unauthorized attackers to exploit physical access and bypass security features.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55337 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55337.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55337"
    },
    {
      "cve": "CVE-2025-55678",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows DirectX allows an authorized attacker to locally elevate privileges via a use-after-free exploit.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55678 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55678.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55678"
    },
    {
      "cve": "CVE-2025-55679",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        },
        {
          "category": "description",
          "text": "Improper input validation in the Windows Kernel can allow unauthorized attackers to locally disclose sensitive information.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55679 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55679.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55679"
    },
    {
      "cve": "CVE-2025-55680",
      "cwe": {
        "id": "CWE-367",
        "name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
      },
      "notes": [
        {
          "category": "other",
          "text": "Time-of-check Time-of-use (TOCTOU) Race Condition",
          "title": "CWE-367"
        },
        {
          "category": "description",
          "text": "A TOCTOU race condition in the Windows Cloud Files Mini Filter Driver allows an authorized attacker to locally elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55680 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55680.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55680"
    },
    {
      "cve": "CVE-2025-55682",
      "cwe": {
        "id": "CWE-841",
        "name": "Improper Enforcement of Behavioral Workflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Enforcement of Behavioral Workflow",
          "title": "CWE-841"
        },
        {
          "category": "description",
          "text": "Improper enforcement of behavioral workflow in Windows BitLocker allows unauthorized attackers to exploit physical access and bypass security features.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55682 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55682.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55682"
    },
    {
      "cve": "CVE-2025-55684",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows PrintWorkflowUserSvc enables an authorized attacker to locally elevate privileges via a use-after-free exploit.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55684 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55684.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55684"
    },
    {
      "cve": "CVE-2025-55688",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows PrintWorkflowUserSvc enables an authorized attacker to locally elevate privileges via a use-after-free exploit.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55688 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55688.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55688"
    },
    {
      "cve": "CVE-2025-55690",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows PrintWorkflowUserSvc enables an authorized attacker to locally elevate privileges via a use-after-free exploit.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55690 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55690.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55690"
    },
    {
      "cve": "CVE-2025-55691",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows PrintWorkflowUserSvc enables an authorized attacker to locally elevate privileges via a use-after-free exploit.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55691 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55691.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55691"
    },
    {
      "cve": "CVE-2025-55692",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "description",
          "text": "Improper input validation in Windows Error Reporting allows an authorized attacker to gain elevated local privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55692 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55692.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55692"
    },
    {
      "cve": "CVE-2025-55693",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in the Windows Kernel, termed \u0027use after free,\u0027 allows unauthorized attackers to locally escalate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55693 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55693.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55693"
    },
    {
      "cve": "CVE-2025-55694",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Access Control",
          "title": "CWE-284"
        },
        {
          "category": "description",
          "text": "Improper access control in Windows Error Reporting allows an authorized attacker to gain elevated privileges locally, posing a significant security risk.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55694 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55694.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55694"
    },
    {
      "cve": "CVE-2025-55695",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "description",
          "text": "An out-of-bounds read vulnerability in the Windows WLAN Auto Config Service can be exploited by an authorized attacker to disclose local information.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55695 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55695.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55695"
    },
    {
      "cve": "CVE-2025-55696",
      "cwe": {
        "id": "CWE-367",
        "name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
      },
      "notes": [
        {
          "category": "other",
          "text": "Time-of-check Time-of-use (TOCTOU) Race Condition",
          "title": "CWE-367"
        },
        {
          "category": "other",
          "text": "Untrusted Pointer Dereference",
          "title": "CWE-822"
        },
        {
          "category": "description",
          "text": "A TOCTOU race condition in the NtQueryInformation Token function enables an authorized attacker to locally elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55696 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55696.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55696"
    },
    {
      "cve": "CVE-2025-55698",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "notes": [
        {
          "category": "other",
          "text": "NULL Pointer Dereference",
          "title": "CWE-476"
        },
        {
          "category": "description",
          "text": "A null pointer dereference vulnerability in Windows DirectX allows an authorized attacker to induce a denial of service over a network.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55698 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55698.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55698"
    },
    {
      "cve": "CVE-2025-55699",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        },
        {
          "category": "description",
          "text": "The exposure of sensitive information in the Windows Kernel allows authorized attackers to locally disclose confidential data, posing a significant security risk.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55699 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55699.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55699"
    },
    {
      "cve": "CVE-2025-58714",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Access Control",
          "title": "CWE-284"
        },
        {
          "category": "description",
          "text": "The Windows Ancillary Function Driver for WinSock has an improper access control vulnerability that allows an authorized attacker to locally elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58714 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58714.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58714"
    },
    {
      "cve": "CVE-2025-58718",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in the Remote Desktop Client enables unauthorized code execution due to a use-after-free error, posing significant security risks.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58718 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58718.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58718"
    },
    {
      "cve": "CVE-2025-58720",
      "cwe": {
        "id": "CWE-1240",
        "name": "Use of a Cryptographic Primitive with a Risky Implementation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use of a Cryptographic Primitive with a Risky Implementation",
          "title": "CWE-1240"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows Cryptographic Services allows an authorized attacker to locally disclose information due to a flawed implementation of a cryptographic primitive.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58720 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58720.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58720"
    },
    {
      "cve": "CVE-2025-58725",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Heap-based Buffer Overflow",
          "title": "CWE-122"
        },
        {
          "category": "description",
          "text": "A heap-based buffer overflow vulnerability in Windows COM allows an authorized attacker to locally elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58725 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58725.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58725"
    },
    {
      "cve": "CVE-2025-58726",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Access Control",
          "title": "CWE-284"
        },
        {
          "category": "description",
          "text": "An improper access control vulnerability in Windows SMB Server allows authorized attackers to elevate their privileges within a network environment.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58726 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58726.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58726"
    },
    {
      "cve": "CVE-2025-58727",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
          "title": "CWE-362"
        },
        {
          "category": "description",
          "text": "A race condition in the Windows Connected Devices Platform Service allows an authorized attacker to locally elevate their privileges due to improper synchronization of shared resources.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58727 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58727.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58727"
    },
    {
      "cve": "CVE-2025-58729",
      "cwe": {
        "id": "CWE-1287",
        "name": "Improper Validation of Specified Type of Input"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Validation of Specified Type of Input",
          "title": "CWE-1287"
        },
        {
          "category": "description",
          "text": "An attacker can exploit improper input validation in Windows Local Session Manager (LSM) to trigger a denial of service over a network.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58729 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58729.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58729"
    },
    {
      "cve": "CVE-2025-58730",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "The document highlights a vulnerability in Inbox COM Objects that allows unauthorized code execution locally due to a use-after-free flaw.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58730 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58730.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58730"
    },
    {
      "cve": "CVE-2025-58731",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "The document highlights a vulnerability in Inbox COM Objects that allows unauthorized code execution locally due to a use-after-free flaw.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58731 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58731.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58731"
    },
    {
      "cve": "CVE-2025-58733",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "The document highlights a vulnerability in Inbox COM Objects that allows unauthorized code execution locally due to a use-after-free flaw.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58733 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58733.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58733"
    },
    {
      "cve": "CVE-2025-58734",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "The document highlights a vulnerability in Inbox COM Objects that allows unauthorized code execution locally due to a use-after-free flaw.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58734 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58734.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58734"
    },
    {
      "cve": "CVE-2025-58736",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "The document highlights a vulnerability in Inbox COM Objects that allows unauthorized code execution locally due to a use-after-free flaw.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58736 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58736.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58736"
    },
    {
      "cve": "CVE-2025-58738",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "The document highlights a vulnerability in Inbox COM Objects that allows unauthorized code execution locally due to a use-after-free flaw.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58738 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58738.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58738"
    },
    {
      "cve": "CVE-2025-58739",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        },
        {
          "category": "description",
          "text": "Sensitive information exposure in Windows File Explorer can allow unauthorized attackers to spoof identities across a network, posing a significant security risk.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-58739 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58739.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-58739"
    },
    {
      "cve": "CVE-2025-59187",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "other",
          "text": "Untrusted Pointer Dereference",
          "title": "CWE-822"
        },
        {
          "category": "description",
          "text": "Improper input validation in the Windows Kernel can allow an authorized attacker to gain elevated local privileges, posing a significant security risk.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59187 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59187.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59187"
    },
    {
      "cve": "CVE-2025-59189",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in the Microsoft Brokering File System enables unauthorized attackers to locally elevate their privileges due to a use-after-free error.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59189 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59189.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59189"
    },
    {
      "cve": "CVE-2025-59190",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "description",
          "text": "Improper input validation in the Microsoft Windows Search Component can allow an unauthorized attacker to locally deny service.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59190 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59190.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59190"
    },
    {
      "cve": "CVE-2025-59191",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Heap-based Buffer Overflow",
          "title": "CWE-122"
        },
        {
          "category": "description",
          "text": "A heap-based buffer overflow vulnerability in the Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to locally elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59191 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59191.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59191"
    },
    {
      "cve": "CVE-2025-59192",
      "cwe": {
        "id": "CWE-126",
        "name": "Buffer Over-read"
      },
      "notes": [
        {
          "category": "other",
          "text": "Buffer Over-read",
          "title": "CWE-126"
        },
        {
          "category": "description",
          "text": "A buffer over-read vulnerability in the Storport.sys driver allows an authorized attacker to locally elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59192 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59192.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59192"
    },
    {
      "cve": "CVE-2025-59193",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
          "title": "CWE-362"
        },
        {
          "category": "description",
          "text": "A race condition in Windows Management Services allows authorized attackers to locally elevate their privileges due to improper synchronization.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59193 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59193.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59193"
    },
    {
      "cve": "CVE-2025-59194",
      "cwe": {
        "id": "CWE-908",
        "name": "Use of Uninitialized Resource"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use of Uninitialized Resource",
          "title": "CWE-908"
        },
        {
          "category": "description",
          "text": "The document outlines a vulnerability in the Windows Kernel that allows an authorized attacker to locally escalate privileges by exploiting uninitialized resources.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59194 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59194.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59194"
    },
    {
      "cve": "CVE-2025-59197",
      "cwe": {
        "id": "CWE-532",
        "name": "Insertion of Sensitive Information into Log File"
      },
      "notes": [
        {
          "category": "other",
          "text": "Insertion of Sensitive Information into Log File",
          "title": "CWE-532"
        },
        {
          "category": "description",
          "text": "Inserting sensitive information into a Windows ETL Channel log file allows an authorized attacker to locally disclose confidential data.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59197 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59197.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59197"
    },
    {
      "cve": "CVE-2025-59198",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "description",
          "text": "Improper input validation in the Microsoft Windows Search Component can allow an authorized attacker to locally trigger a denial of service condition.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59198 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59198.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.0,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59198"
    },
    {
      "cve": "CVE-2025-59203",
      "cwe": {
        "id": "CWE-532",
        "name": "Insertion of Sensitive Information into Log File"
      },
      "notes": [
        {
          "category": "other",
          "text": "Insertion of Sensitive Information into Log File",
          "title": "CWE-532"
        },
        {
          "category": "description",
          "text": "The Windows StateRepository API contains a vulnerability that enables authorized attackers to insert sensitive information into log files, risking local information disclosure.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59203 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59203.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59203"
    },
    {
      "cve": "CVE-2025-59205",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
          "title": "CWE-362"
        },
        {
          "category": "description",
          "text": "A race condition in the Microsoft Graphics Component allows an authorized attacker to elevate privileges locally due to improper synchronization of shared resources.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59205 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59205.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59205"
    },
    {
      "cve": "CVE-2025-59208",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "description",
          "text": "An out-of-bounds read vulnerability in Windows MapUrlToZone can allow unauthorized attackers to disclose sensitive information over a network.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59208 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59208.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59208"
    },
    {
      "cve": "CVE-2025-59209",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        },
        {
          "category": "description",
          "text": "A vulnerability in Windows Push Notification Core allows an authorized attacker to expose sensitive information to an unauthorized actor locally.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59209 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59209.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59209"
    },
    {
      "cve": "CVE-2025-59210",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "Windows Resilient File System (ReFS) contains a vulnerability in its Deduplication Service that may enable an attacker to elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59210 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59210.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59210"
    },
    {
      "cve": "CVE-2025-59214",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        },
        {
          "category": "description",
          "text": "Sensitive information exposure in Windows File Explorer can allow unauthorized attackers to spoof identities across a network, posing a significant security risk.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59214 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59214.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59214"
    },
    {
      "cve": "CVE-2025-59241",
      "cwe": {
        "id": "CWE-59",
        "name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
          "title": "CWE-59"
        },
        {
          "category": "description",
          "text": "A vulnerability in the Windows Health and Optimized Experiences Service enables authorized attackers to locally elevate privileges through improper link resolution prior to file access.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59241 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59241.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59241"
    },
    {
      "cve": "CVE-2025-2884",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "description",
          "text": "Multiple vulnerabilities have been identified in various HPE servers and the TCG TPM2.0 Reference implementation, including Out-of-Bounds read issues and local denial of service exploits.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-2884 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-2884.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-2884"
    },
    {
      "cve": "CVE-2025-59244",
      "cwe": {
        "id": "CWE-73",
        "name": "External Control of File Name or Path"
      },
      "notes": [
        {
          "category": "other",
          "text": "External Control of File Name or Path",
          "title": "CWE-73"
        },
        {
          "category": "description",
          "text": "Unauthorized attackers can exploit external control of file names or paths in Windows Core Shell to execute spoofing attacks over a network.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59244 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59244.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59244"
    },
    {
      "cve": "CVE-2025-59230",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Access Control",
          "title": "CWE-284"
        },
        {
          "category": "description",
          "text": "Microsoft Windows Remote Access Connection Manager has a vulnerability that allows an authorized attacker to locally elevate privileges due to improper access control.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59230 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59230.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59230"
    },
    {
      "cve": "CVE-2025-59253",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Access Control",
          "title": "CWE-284"
        },
        {
          "category": "description",
          "text": "An attacker can exploit improper access control in the Microsoft Windows Search Component, leading to a local denial of service.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59253 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59253.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59253"
    },
    {
      "cve": "CVE-2025-59261",
      "cwe": {
        "id": "CWE-367",
        "name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
      },
      "notes": [
        {
          "category": "other",
          "text": "Time-of-check Time-of-use (TOCTOU) Race Condition",
          "title": "CWE-367"
        },
        {
          "category": "description",
          "text": "A TOCTOU race condition in the Microsoft Graphics Component allows an authorized attacker to locally elevate their privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59261 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59261.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59261"
    },
    {
      "cve": "CVE-2025-47827",
      "cwe": {
        "id": "CWE-347",
        "name": "Improper Verification of Cryptographic Signature"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Verification of Cryptographic Signature",
          "title": "CWE-347"
        },
        {
          "category": "other",
          "text": "Use of a Key Past its Expiration Date",
          "title": "CWE-324"
        },
        {
          "category": "description",
          "text": "IGEL OS versions prior to 11 have a vulnerability in the igel-flash-driver module that allows Secure Boot to be bypassed due to improper verification of cryptographic signatures, enabling the use of unverified SquashFS images.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-47827 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-47827.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-47827"
    },
    {
      "cve": "CVE-2025-59277",
      "cwe": {
        "id": "CWE-1287",
        "name": "Improper Validation of Specified Type of Input"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Validation of Specified Type of Input",
          "title": "CWE-1287"
        },
        {
          "category": "description",
          "text": "The document identifies a vulnerability in Windows Authentication Methods that allows an authorized attacker to achieve elevated privileges due to inadequate input validation.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59277 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59277.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59277"
    },
    {
      "cve": "CVE-2025-59280",
      "cwe": {
        "id": "CWE-287",
        "name": "Improper Authentication"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Authentication",
          "title": "CWE-287"
        },
        {
          "category": "description",
          "text": "Improper authentication in the Windows SMB Client allows unauthorized attackers to manipulate data over a network, posing a significant security risk.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59280 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59280.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.1,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59280"
    },
    {
      "cve": "CVE-2025-59290",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in the Windows Bluetooth Service enables an authorized attacker to locally elevate privileges via a use-after-free exploit.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59290 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59290.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59290"
    },
    {
      "cve": "CVE-2025-55326",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "A vulnerability in the Connected Devices Platform Service (Cdpsvc) allows unauthorized attackers to execute code remotely due to a use-after-free issue.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-55326 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55326.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-55326"
    },
    {
      "cve": "CVE-2025-59275",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "other",
          "text": "Heap-based Buffer Overflow",
          "title": "CWE-122"
        },
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "other",
          "text": "Improper Validation of Specified Type of Input",
          "title": "CWE-1287"
        },
        {
          "category": "description",
          "text": "The document identifies a vulnerability in Windows Authentication Methods that allows an authorized attacker to achieve elevated privileges due to inadequate input validation.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59275 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59275.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59275"
    },
    {
      "cve": "CVE-2025-59278",
      "cwe": {
        "id": "CWE-1287",
        "name": "Improper Validation of Specified Type of Input"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Validation of Specified Type of Input",
          "title": "CWE-1287"
        },
        {
          "category": "description",
          "text": "The document identifies a vulnerability in Windows Authentication Methods that allows an authorized attacker to achieve elevated privileges due to inadequate input validation.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59278 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59278.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59278"
    },
    {
      "cve": "CVE-2025-59289",
      "cwe": {
        "id": "CWE-415",
        "name": "Double Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Double Free",
          "title": "CWE-415"
        },
        {
          "category": "description",
          "text": "A vulnerability in the Windows Bluetooth Service allows an authorized attacker to locally elevate privileges due to a double free error.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59289 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59289.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59289"
    },
    {
      "cve": "CVE-2025-59186",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "notes": [
        {
          "category": "other",
          "text": "Exposure of Sensitive Information to an Unauthorized Actor",
          "title": "CWE-200"
        },
        {
          "category": "description",
          "text": "The exposure of sensitive information in the Windows Kernel allows authorized attackers to locally disclose confidential data, posing a significant security risk.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3",
          "CSAFPID-4",
          "CSAFPID-5",
          "CSAFPID-6",
          "CSAFPID-7",
          "CSAFPID-8",
          "CSAFPID-9",
          "CSAFPID-10",
          "CSAFPID-11",
          "CSAFPID-12",
          "CSAFPID-13",
          "CSAFPID-14",
          "CSAFPID-15",
          "CSAFPID-16",
          "CSAFPID-17",
          "CSAFPID-18",
          "CSAFPID-19",
          "CSAFPID-20",
          "CSAFPID-21",
          "CSAFPID-22",
          "CSAFPID-23",
          "CSAFPID-24",
          "CSAFPID-25",
          "CSAFPID-26",
          "CSAFPID-27",
          "CSAFPID-28",
          "CSAFPID-29",
          "CSAFPID-30",
          "CSAFPID-31"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-59186 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59186.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3",
            "CSAFPID-4",
            "CSAFPID-5",
            "CSAFPID-6",
            "CSAFPID-7",
            "CSAFPID-8",
            "CSAFPID-9",
            "CSAFPID-10",
            "CSAFPID-11",
            "CSAFPID-12",
            "CSAFPID-13",
            "CSAFPID-14",
            "CSAFPID-15",
            "CSAFPID-16",
            "CSAFPID-17",
            "CSAFPID-18",
            "CSAFPID-19",
            "CSAFPID-20",
            "CSAFPID-21",
            "CSAFPID-22",
            "CSAFPID-23",
            "CSAFPID-24",
            "CSAFPID-25",
            "CSAFPID-26",
            "CSAFPID-27",
            "CSAFPID-28",
            "CSAFPID-29",
            "CSAFPID-30",
            "CSAFPID-31"
          ]
        }
      ],
      "title": "CVE-2025-59186"
    }
  ]
}

CERTFR-2025-AVI-0879

Vulnerability from certfr_avis - Published: 2025-10-15 - Updated: 2025-10-15

De multiples vulnérabilités ont été découvertes dans Microsoft Windows. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.

Microsoft indique que les vulnérabilités CVE-2025-24990, CVE-2025-47827 et CVE-2025-59230 sont activement exploitées.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Microsoft	Windows	Windows 10 pour systèmes x64 versions antérieures à 10.0.10240.21161
Microsoft	Windows	Windows 10 Version 1607 pour systèmes x64 versions antérieures à 10.0.14393.8519
Microsoft	Windows	Windows Server 2012 (Server Core installation) versions antérieures à 6.2.9200.25722
Microsoft	Windows	Windows Server 2008 pour systèmes 32 bits Service Pack 2 (Server Core installation) versions antérieures à 1.000
Microsoft	Windows	Windows Server 2012 R2 versions antérieures à 6.3.9600.22824
Microsoft	Windows	Windows Server 2022 versions antérieures à 10.0.20348.4294
Microsoft	Windows	Windows 10 Version 21H2 pour systèmes x64 versions antérieures à 10.0.19044.6456
Microsoft	Windows	Windows Server 2022 (Server Core installation) versions antérieures à 10.0.20348.4294
Microsoft	Windows	Windows App Client pour Windows Desktop versions antérieures à 2.0.706.0
Microsoft	Windows	Remote Desktop client pour Windows Desktop versions antérieures à 1.2.6599.0
Microsoft	Windows	Windows Server 2016 versions antérieures à 10.0.14393.8519
Microsoft	Windows	Windows Server 2019 (Server Core installation) versions antérieures à 10.0.17763.7919
Microsoft	Windows	Windows 10 Version 22H2 pour systèmes ARM64 versions antérieures à 10.0.19045.6456
Microsoft	Windows	Windows Server 2008 pour systèmes x64 Service Pack 2 versions antérieures à 6.0.6003.23571
Microsoft	Windows	Windows Server 2008 R2 pour systèmes x64 Service Pack 1 versions antérieures à 6.1.7601.27974
Microsoft	Windows	Windows 10 Version 21H2 pour systèmes ARM64 versions antérieures à 10.0.19044.6456
Microsoft	Windows	Windows 11 Version 24H2 pour systèmes x64 versions antérieures à 10.0.26100.6899
Microsoft	Windows	Windows Server 2022, 23H2 Edition (Server Core installation) versions antérieures à 10.0.25398.1913
Microsoft	Windows	Windows Server 2008 pour systèmes 32 bits Service Pack 2 versions antérieures à 6.0.6003.23571
Microsoft	Windows	Windows Server 2025 versions antérieures à 10.0.26100.6899
Microsoft	Windows	Windows 10 Version 21H2 pour systèmes 32 bits versions antérieures à 10.0.19044.6456
Microsoft	Windows	Windows 10 Version 22H2 pour systèmes 32 bits versions antérieures à 10.0.19045.6456
Microsoft	Windows	Windows 11 Version 25H2 pour systèmes ARM64 versions antérieures à 10.0.26200.6899
Microsoft	Windows	Windows 10 Version 22H2 pour systèmes x64 versions antérieures à 10.0.19045.6456
Microsoft	Windows	Windows 11 Version 22H2 pour systèmes ARM64 versions antérieures à 10.0.22621.6060
Microsoft	Windows	Windows Server 2008 pour systèmes x64 Service Pack 2 (Server Core installation) versions antérieures à 6.0.6003.23571
Microsoft	Windows	Windows 10 Version 1809 pour systèmes 32 bits versions antérieures à 10.0.17763.7919
Microsoft	Windows	Windows 11 Version 23H2 pour systèmes x64 versions antérieures à 10.0.22631.6060
Microsoft	Windows	Windows Server 2012 R2 (Server Core installation) versions antérieures à 6.3.9600.22824
Microsoft	Windows	Windows Server 2025 (Server Core installation) versions antérieures à 10.0.26100.6899
Microsoft	Windows	Windows 11 Version 23H2 pour systèmes ARM64 versions antérieures à 10.0.22631.6060
Microsoft	Windows	Windows Server 2016 (Server Core installation) versions antérieures à 10.0.14393.8519
Microsoft	Windows	Windows 11 Version 24H2 pour systèmes ARM64 versions antérieures à 10.0.26100.6899
Microsoft	Windows	Windows Server 2008 R2 pour systèmes x64 Service Pack 1 (Server Core installation) versions antérieures à 6.1.7601.27974
Microsoft	Windows	Windows Server 2019 versions antérieures à 10.0.17763.7919
Microsoft	Windows	Windows 10 Version 1607 pour systèmes 32 bits versions antérieures à 10.0.14393.8519
Microsoft	Windows	Windows Server 2012 versions antérieures à 6.2.9200.25722
Microsoft	Windows	Windows 10 Version 1809 pour systèmes x64 versions antérieures à 10.0.17763.7919
Microsoft	Windows	Windows 10 pour systèmes 32 bits versions antérieures à 10.0.10240.21161

References

Title

Publication Time

Tags

Bulletin de sécurité Microsoft Windows CVE-2025-59205	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55682	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58727	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59204	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59275	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-50175	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55697	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58737	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55326	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-53139	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59502	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55328	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59261	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59214	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58718	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58738	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55687	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59255	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-48004	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59284	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58720	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55688	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55700	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59259	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59196	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55336	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55696	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55685	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55694	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-47827	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59254	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55340	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58722	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55690	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55692	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59184	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59192	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55683	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58731	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-54957	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58714	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55689	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55693	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59194	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59289	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59211	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59197	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58736	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58716	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55333	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59190	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59198	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58729	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-53150	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59202	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58730	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58733	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59200	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55701	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58734	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55698	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-25004	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59209	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59290	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59191	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55332	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55678	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59278	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59242	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55331	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58715	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59230	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-47979	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59188	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59201	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55677	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59244	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58719	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58739	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-24052	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58735	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55691	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55676	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55337	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59241	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55335	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59206	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59295	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55681	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55330	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59280	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59258	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59282	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59186	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55699	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-24990	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59203	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59260	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55248	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58726	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55684	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59277	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-48813	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59193	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59189	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55339	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58728	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59207	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55338	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59210	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58717	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2016-9535	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58725	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-2884	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-53768	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59287	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59257	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55686	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59185	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55680	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59294	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-49708	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55334	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59187	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-50174	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-53717	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59253	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58732	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55679	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59195	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-50152	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59199	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55695	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55325	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59208	2025-10-14	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Windows 10 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.10240.21161",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 1607 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.14393.8519",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2012 (Server Core installation) versions ant\u00e9rieures \u00e0 6.2.9200.25722",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2008 pour syst\u00e8mes 32 bits Service Pack 2 (Server Core installation) versions ant\u00e9rieures \u00e0 1.000",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2012 R2 versions ant\u00e9rieures \u00e0 6.3.9600.22824",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2022 versions ant\u00e9rieures \u00e0 10.0.20348.4294",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 21H2 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.19044.6456",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2022 (Server Core installation) versions ant\u00e9rieures \u00e0 10.0.20348.4294",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows App Client pour Windows Desktop versions ant\u00e9rieures \u00e0 2.0.706.0",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Remote Desktop client pour Windows Desktop versions ant\u00e9rieures \u00e0 1.2.6599.0",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2016 versions ant\u00e9rieures \u00e0 10.0.14393.8519",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2019 (Server Core installation) versions ant\u00e9rieures \u00e0 10.0.17763.7919",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 22H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.19045.6456",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2008 pour syst\u00e8mes x64 Service Pack 2 versions ant\u00e9rieures \u00e0 6.0.6003.23571",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2008 R2 pour syst\u00e8mes x64 Service Pack 1 versions ant\u00e9rieures \u00e0 6.1.7601.27974",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 21H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.19044.6456",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 11 Version 24H2 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.26100.6899",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2022, 23H2 Edition (Server Core installation) versions ant\u00e9rieures \u00e0 10.0.25398.1913",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2008 pour syst\u00e8mes 32 bits Service Pack 2 versions ant\u00e9rieures \u00e0 6.0.6003.23571",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2025 versions ant\u00e9rieures \u00e0 10.0.26100.6899",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 21H2 pour syst\u00e8mes 32 bits versions ant\u00e9rieures \u00e0 10.0.19044.6456",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 22H2 pour syst\u00e8mes 32 bits versions ant\u00e9rieures \u00e0 10.0.19045.6456",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 11 Version 25H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.26200.6899",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 22H2 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.19045.6456",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 11 Version 22H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.22621.6060",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2008 pour syst\u00e8mes x64 Service Pack 2 (Server Core installation) versions ant\u00e9rieures \u00e0 6.0.6003.23571",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 1809 pour syst\u00e8mes 32 bits versions ant\u00e9rieures \u00e0 10.0.17763.7919",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 11 Version 23H2 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.22631.6060",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2012 R2 (Server Core installation) versions ant\u00e9rieures \u00e0 6.3.9600.22824",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2025 (Server Core installation) versions ant\u00e9rieures \u00e0 10.0.26100.6899",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 11 Version 23H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.22631.6060",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2016 (Server Core installation) versions ant\u00e9rieures \u00e0 10.0.14393.8519",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 11 Version 24H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.26100.6899",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2008 R2 pour syst\u00e8mes x64 Service Pack 1 (Server Core installation) versions ant\u00e9rieures \u00e0 6.1.7601.27974",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2019 versions ant\u00e9rieures \u00e0 10.0.17763.7919",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 1607 pour syst\u00e8mes 32 bits versions ant\u00e9rieures \u00e0 10.0.14393.8519",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2012 versions ant\u00e9rieures \u00e0 6.2.9200.25722",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 1809 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.17763.7919",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 pour syst\u00e8mes 32 bits versions ant\u00e9rieures \u00e0 10.0.10240.21161",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2025-55691",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55691"
    },
    {
      "name": "CVE-2025-58738",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58738"
    },
    {
      "name": "CVE-2025-58729",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58729"
    },
    {
      "name": "CVE-2025-55684",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55684"
    },
    {
      "name": "CVE-2025-59197",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59197"
    },
    {
      "name": "CVE-2025-55679",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55679"
    },
    {
      "name": "CVE-2025-55248",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55248"
    },
    {
      "name": "CVE-2025-58719",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58719"
    },
    {
      "name": "CVE-2025-59190",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59190"
    },
    {
      "name": "CVE-2025-58736",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58736"
    },
    {
      "name": "CVE-2025-59254",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59254"
    },
    {
      "name": "CVE-2025-59206",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59206"
    },
    {
      "name": "CVE-2025-59295",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59295"
    },
    {
      "name": "CVE-2025-59287",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59287"
    },
    {
      "name": "CVE-2025-55678",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55678"
    },
    {
      "name": "CVE-2025-59208",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59208"
    },
    {
      "name": "CVE-2025-58731",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58731"
    },
    {
      "name": "CVE-2025-55339",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55339"
    },
    {
      "name": "CVE-2025-59191",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59191"
    },
    {
      "name": "CVE-2025-55676",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55676"
    },
    {
      "name": "CVE-2025-58730",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58730"
    },
    {
      "name": "CVE-2025-59187",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59187"
    },
    {
      "name": "CVE-2025-55685",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55685"
    },
    {
      "name": "CVE-2025-59257",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59257"
    },
    {
      "name": "CVE-2025-58735",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58735"
    },
    {
      "name": "CVE-2025-58717",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58717"
    },
    {
      "name": "CVE-2025-59199",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59199"
    },
    {
      "name": "CVE-2025-59278",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59278"
    },
    {
      "name": "CVE-2025-59198",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59198"
    },
    {
      "name": "CVE-2025-58725",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58725"
    },
    {
      "name": "CVE-2025-55332",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55332"
    },
    {
      "name": "CVE-2025-59230",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59230"
    },
    {
      "name": "CVE-2025-55690",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55690"
    },
    {
      "name": "CVE-2025-58732",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58732"
    },
    {
      "name": "CVE-2025-59194",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59194"
    },
    {
      "name": "CVE-2025-59258",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59258"
    },
    {
      "name": "CVE-2025-55687",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55687"
    },
    {
      "name": "CVE-2025-55335",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55335"
    },
    {
      "name": "CVE-2025-53139",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-53139"
    },
    {
      "name": "CVE-2025-59192",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59192"
    },
    {
      "name": "CVE-2025-59255",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59255"
    },
    {
      "name": "CVE-2025-58726",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58726"
    },
    {
      "name": "CVE-2025-47979",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-47979"
    },
    {
      "name": "CVE-2025-59186",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59186"
    },
    {
      "name": "CVE-2025-58716",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58716"
    },
    {
      "name": "CVE-2025-58733",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58733"
    },
    {
      "name": "CVE-2025-59201",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59201"
    },
    {
      "name": "CVE-2025-58720",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58720"
    },
    {
      "name": "CVE-2025-59207",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59207"
    },
    {
      "name": "CVE-2025-55333",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55333"
    },
    {
      "name": "CVE-2025-59200",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59200"
    },
    {
      "name": "CVE-2025-59282",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59282"
    },
    {
      "name": "CVE-2025-55682",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55682"
    },
    {
      "name": "CVE-2025-55694",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55694"
    },
    {
      "name": "CVE-2025-58737",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58737"
    },
    {
      "name": "CVE-2025-55331",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55331"
    },
    {
      "name": "CVE-2025-59261",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59261"
    },
    {
      "name": "CVE-2025-55325",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55325"
    },
    {
      "name": "CVE-2025-59259",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59259"
    },
    {
      "name": "CVE-2025-55334",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55334"
    },
    {
      "name": "CVE-2025-59205",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59205"
    },
    {
      "name": "CVE-2025-48813",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-48813"
    },
    {
      "name": "CVE-2025-48004",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-48004"
    },
    {
      "name": "CVE-2025-59260",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59260"
    },
    {
      "name": "CVE-2025-55688",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55688"
    },
    {
      "name": "CVE-2025-55701",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55701"
    },
    {
      "name": "CVE-2025-59189",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59189"
    },
    {
      "name": "CVE-2025-55330",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55330"
    },
    {
      "name": "CVE-2025-55698",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55698"
    },
    {
      "name": "CVE-2025-49708",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-49708"
    },
    {
      "name": "CVE-2025-59195",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59195"
    },
    {
      "name": "CVE-2025-50152",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-50152"
    },
    {
      "name": "CVE-2025-59294",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59294"
    },
    {
      "name": "CVE-2025-59214",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59214"
    },
    {
      "name": "CVE-2025-55693",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55693"
    },
    {
      "name": "CVE-2025-59204",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59204"
    },
    {
      "name": "CVE-2025-55336",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55336"
    },
    {
      "name": "CVE-2025-24052",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-24052"
    },
    {
      "name": "CVE-2025-55338",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55338"
    },
    {
      "name": "CVE-2025-55692",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55692"
    },
    {
      "name": "CVE-2025-55326",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55326"
    },
    {
      "name": "CVE-2025-59244",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59244"
    },
    {
      "name": "CVE-2025-55696",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55696"
    },
    {
      "name": "CVE-2025-59184",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59184"
    },
    {
      "name": "CVE-2025-59209",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59209"
    },
    {
      "name": "CVE-2025-55686",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55686"
    },
    {
      "name": "CVE-2025-47827",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-47827"
    },
    {
      "name": "CVE-2025-59277",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59277"
    },
    {
      "name": "CVE-2025-59253",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59253"
    },
    {
      "name": "CVE-2025-50174",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-50174"
    },
    {
      "name": "CVE-2025-59241",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59241"
    },
    {
      "name": "CVE-2025-58728",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58728"
    },
    {
      "name": "CVE-2025-53150",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-53150"
    },
    {
      "name": "CVE-2025-59242",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59242"
    },
    {
      "name": "CVE-2025-55677",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55677"
    },
    {
      "name": "CVE-2025-59185",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59185"
    },
    {
      "name": "CVE-2025-55681",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55681"
    },
    {
      "name": "CVE-2025-58718",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58718"
    },
    {
      "name": "CVE-2025-55700",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55700"
    },
    {
      "name": "CVE-2025-59502",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59502"
    },
    {
      "name": "CVE-2025-59275",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59275"
    },
    {
      "name": "CVE-2025-59284",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59284"
    },
    {
      "name": "CVE-2025-55340",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55340"
    },
    {
      "name": "CVE-2025-58734",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58734"
    },
    {
      "name": "CVE-2025-55697",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55697"
    },
    {
      "name": "CVE-2025-59203",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59203"
    },
    {
      "name": "CVE-2025-58715",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58715"
    },
    {
      "name": "CVE-2025-55695",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55695"
    },
    {
      "name": "CVE-2025-59289",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59289"
    },
    {
      "name": "CVE-2025-58714",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58714"
    },
    {
      "name": "CVE-2025-25004",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-25004"
    },
    {
      "name": "CVE-2025-53768",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-53768"
    },
    {
      "name": "CVE-2025-55699",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55699"
    },
    {
      "name": "CVE-2025-50175",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-50175"
    },
    {
      "name": "CVE-2025-59211",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59211"
    },
    {
      "name": "CVE-2025-58739",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58739"
    },
    {
      "name": "CVE-2025-59202",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59202"
    },
    {
      "name": "CVE-2025-59193",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59193"
    },
    {
      "name": "CVE-2025-55683",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55683"
    },
    {
      "name": "CVE-2025-59280",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59280"
    },
    {
      "name": "CVE-2025-24990",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-24990"
    },
    {
      "name": "CVE-2025-59210",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59210"
    },
    {
      "name": "CVE-2025-58722",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58722"
    },
    {
      "name": "CVE-2025-59188",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59188"
    },
    {
      "name": "CVE-2025-55689",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55689"
    },
    {
      "name": "CVE-2025-58727",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58727"
    },
    {
      "name": "CVE-2025-55328",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55328"
    },
    {
      "name": "CVE-2025-59290",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59290"
    },
    {
      "name": "CVE-2025-55680",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55680"
    },
    {
      "name": "CVE-2025-2884",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-2884"
    },
    {
      "name": "CVE-2025-53717",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-53717"
    },
    {
      "name": "CVE-2025-59196",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59196"
    },
    {
      "name": "CVE-2025-55337",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55337"
    },
    {
      "name": "CVE-2016-9535",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9535"
    },
    {
      "name": "CVE-2025-54957",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-54957"
    }
  ],
  "initial_release_date": "2025-10-15T00:00:00",
  "last_revision_date": "2025-10-15T00:00:00",
  "links": [],
  "reference": "CERTFR-2025-AVI-0879",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2025-10-15T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Microsoft Windows. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.\n\nMicrosoft indique que les vuln\u00e9rabilit\u00e9s CVE-2025-24990, CVE-2025-47827 et CVE-2025-59230 sont activement exploit\u00e9es.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Windows",
  "vendor_advisories": [
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59205",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59205"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55682",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55682"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58727",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58727"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59204",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59204"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59275",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59275"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-50175",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50175"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55697",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55697"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58737",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58737"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55326",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55326"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-53139",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53139"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59502",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59502"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55328",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55328"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59261",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59261"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59214",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59214"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58718",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58718"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58738",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58738"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55687",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55687"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59255",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59255"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-48004",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-48004"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59284",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59284"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58720",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58720"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55688",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55688"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55700",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55700"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59259",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59259"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59196",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59196"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55336",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55336"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55696",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55696"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55685",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55685"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55694",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55694"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-47827",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47827"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59254",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59254"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55340",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55340"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58722",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58722"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55690",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55690"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55692",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55692"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59184",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59184"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59192",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59192"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55683",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55683"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58731",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58731"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-54957",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-54957"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58714",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58714"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55689",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55689"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55693",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55693"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59194",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59194"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59289",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59289"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59211",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59211"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59197",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59197"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58736",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58736"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58716",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58716"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55333",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55333"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59190",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59190"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59198",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59198"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58729",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58729"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-53150",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53150"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59202",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59202"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58730",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58730"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58733",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58733"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59200",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59200"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55701",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55701"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58734",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58734"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55698",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55698"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-25004",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-25004"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59209",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59209"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59290",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59290"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59191",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59191"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55332",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55332"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55678",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55678"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59278",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59278"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59242",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59242"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55331",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55331"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58715",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58715"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59230",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59230"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-47979",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47979"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59188",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59188"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59201",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59201"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55677",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55677"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59244",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59244"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58719",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58719"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58739",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58739"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-24052",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24052"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58735",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58735"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55691",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55691"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55676",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55676"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55337",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55337"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59241",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59241"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55335",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55335"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59206",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59206"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59295",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59295"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55681",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55681"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55330",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55330"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59280",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59280"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59258",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59258"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59282",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59282"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59186",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59186"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55699",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55699"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-24990",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24990"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59203",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59203"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59260",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59260"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55248",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55248"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58726",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58726"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55684",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55684"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59277",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59277"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-48813",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-48813"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59193",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59193"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59189",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59189"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55339",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55339"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58728",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58728"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59207",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59207"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55338",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55338"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59210",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59210"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58717",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58717"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2016-9535",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-9535"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58725",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58725"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-2884",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-2884"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-53768",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53768"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59287",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59287"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59257",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59257"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55686",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55686"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59185",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59185"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55680",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55680"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59294",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59294"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-49708",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49708"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55334",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55334"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59187",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59187"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-50174",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50174"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-53717",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53717"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59253",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59253"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58732",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58732"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55679",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55679"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59195",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59195"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-50152",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50152"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59199",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59199"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55695",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55695"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55325",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55325"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59208",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59208"
    }
  ]
}

CERTFR-2025-AVI-0879

Vulnerability from certfr_avis - Published: 2025-10-15 - Updated: 2025-10-15

Microsoft indique que les vulnérabilités CVE-2025-24990, CVE-2025-47827 et CVE-2025-59230 sont activement exploitées.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Microsoft	Windows	Windows 10 pour systèmes x64 versions antérieures à 10.0.10240.21161
Microsoft	Windows	Windows 10 Version 1607 pour systèmes x64 versions antérieures à 10.0.14393.8519
Microsoft	Windows	Windows Server 2012 (Server Core installation) versions antérieures à 6.2.9200.25722
Microsoft	Windows	Windows Server 2008 pour systèmes 32 bits Service Pack 2 (Server Core installation) versions antérieures à 1.000
Microsoft	Windows	Windows Server 2012 R2 versions antérieures à 6.3.9600.22824
Microsoft	Windows	Windows Server 2022 versions antérieures à 10.0.20348.4294
Microsoft	Windows	Windows 10 Version 21H2 pour systèmes x64 versions antérieures à 10.0.19044.6456
Microsoft	Windows	Windows Server 2022 (Server Core installation) versions antérieures à 10.0.20348.4294
Microsoft	Windows	Windows App Client pour Windows Desktop versions antérieures à 2.0.706.0
Microsoft	Windows	Remote Desktop client pour Windows Desktop versions antérieures à 1.2.6599.0
Microsoft	Windows	Windows Server 2016 versions antérieures à 10.0.14393.8519
Microsoft	Windows	Windows Server 2019 (Server Core installation) versions antérieures à 10.0.17763.7919
Microsoft	Windows	Windows 10 Version 22H2 pour systèmes ARM64 versions antérieures à 10.0.19045.6456
Microsoft	Windows	Windows Server 2008 pour systèmes x64 Service Pack 2 versions antérieures à 6.0.6003.23571
Microsoft	Windows	Windows Server 2008 R2 pour systèmes x64 Service Pack 1 versions antérieures à 6.1.7601.27974
Microsoft	Windows	Windows 10 Version 21H2 pour systèmes ARM64 versions antérieures à 10.0.19044.6456
Microsoft	Windows	Windows 11 Version 24H2 pour systèmes x64 versions antérieures à 10.0.26100.6899
Microsoft	Windows	Windows Server 2022, 23H2 Edition (Server Core installation) versions antérieures à 10.0.25398.1913
Microsoft	Windows	Windows Server 2008 pour systèmes 32 bits Service Pack 2 versions antérieures à 6.0.6003.23571
Microsoft	Windows	Windows Server 2025 versions antérieures à 10.0.26100.6899
Microsoft	Windows	Windows 10 Version 21H2 pour systèmes 32 bits versions antérieures à 10.0.19044.6456
Microsoft	Windows	Windows 10 Version 22H2 pour systèmes 32 bits versions antérieures à 10.0.19045.6456
Microsoft	Windows	Windows 11 Version 25H2 pour systèmes ARM64 versions antérieures à 10.0.26200.6899
Microsoft	Windows	Windows 10 Version 22H2 pour systèmes x64 versions antérieures à 10.0.19045.6456
Microsoft	Windows	Windows 11 Version 22H2 pour systèmes ARM64 versions antérieures à 10.0.22621.6060
Microsoft	Windows	Windows Server 2008 pour systèmes x64 Service Pack 2 (Server Core installation) versions antérieures à 6.0.6003.23571
Microsoft	Windows	Windows 10 Version 1809 pour systèmes 32 bits versions antérieures à 10.0.17763.7919
Microsoft	Windows	Windows 11 Version 23H2 pour systèmes x64 versions antérieures à 10.0.22631.6060
Microsoft	Windows	Windows Server 2012 R2 (Server Core installation) versions antérieures à 6.3.9600.22824
Microsoft	Windows	Windows Server 2025 (Server Core installation) versions antérieures à 10.0.26100.6899
Microsoft	Windows	Windows 11 Version 23H2 pour systèmes ARM64 versions antérieures à 10.0.22631.6060
Microsoft	Windows	Windows Server 2016 (Server Core installation) versions antérieures à 10.0.14393.8519
Microsoft	Windows	Windows 11 Version 24H2 pour systèmes ARM64 versions antérieures à 10.0.26100.6899
Microsoft	Windows	Windows Server 2008 R2 pour systèmes x64 Service Pack 1 (Server Core installation) versions antérieures à 6.1.7601.27974
Microsoft	Windows	Windows Server 2019 versions antérieures à 10.0.17763.7919
Microsoft	Windows	Windows 10 Version 1607 pour systèmes 32 bits versions antérieures à 10.0.14393.8519
Microsoft	Windows	Windows Server 2012 versions antérieures à 6.2.9200.25722
Microsoft	Windows	Windows 10 Version 1809 pour systèmes x64 versions antérieures à 10.0.17763.7919
Microsoft	Windows	Windows 10 pour systèmes 32 bits versions antérieures à 10.0.10240.21161

References

Title

Publication Time

Tags

Bulletin de sécurité Microsoft Windows CVE-2025-59205	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55682	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58727	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59204	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59275	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-50175	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55697	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58737	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55326	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-53139	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59502	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55328	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59261	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59214	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58718	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58738	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55687	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59255	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-48004	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59284	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58720	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55688	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55700	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59259	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59196	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55336	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55696	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55685	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55694	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-47827	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59254	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55340	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58722	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55690	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55692	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59184	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59192	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55683	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58731	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-54957	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58714	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55689	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55693	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59194	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59289	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59211	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59197	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58736	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58716	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55333	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59190	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59198	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58729	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-53150	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59202	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58730	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58733	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59200	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55701	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58734	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55698	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-25004	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59209	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59290	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59191	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55332	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55678	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59278	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59242	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55331	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58715	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59230	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-47979	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59188	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59201	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55677	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59244	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58719	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58739	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-24052	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58735	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55691	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55676	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55337	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59241	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55335	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59206	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59295	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55681	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55330	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59280	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59258	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59282	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59186	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55699	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-24990	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59203	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59260	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55248	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58726	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55684	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59277	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-48813	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59193	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59189	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55339	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58728	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59207	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55338	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59210	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58717	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2016-9535	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58725	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-2884	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-53768	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59287	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59257	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55686	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59185	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55680	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59294	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-49708	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55334	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59187	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-50174	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-53717	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59253	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-58732	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55679	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59195	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-50152	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59199	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55695	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-55325	2025-10-14	vendor-advisory
Bulletin de sécurité Microsoft Windows CVE-2025-59208	2025-10-14	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Windows 10 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.10240.21161",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 1607 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.14393.8519",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2012 (Server Core installation) versions ant\u00e9rieures \u00e0 6.2.9200.25722",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2008 pour syst\u00e8mes 32 bits Service Pack 2 (Server Core installation) versions ant\u00e9rieures \u00e0 1.000",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2012 R2 versions ant\u00e9rieures \u00e0 6.3.9600.22824",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2022 versions ant\u00e9rieures \u00e0 10.0.20348.4294",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 21H2 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.19044.6456",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2022 (Server Core installation) versions ant\u00e9rieures \u00e0 10.0.20348.4294",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows App Client pour Windows Desktop versions ant\u00e9rieures \u00e0 2.0.706.0",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Remote Desktop client pour Windows Desktop versions ant\u00e9rieures \u00e0 1.2.6599.0",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2016 versions ant\u00e9rieures \u00e0 10.0.14393.8519",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2019 (Server Core installation) versions ant\u00e9rieures \u00e0 10.0.17763.7919",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 22H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.19045.6456",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2008 pour syst\u00e8mes x64 Service Pack 2 versions ant\u00e9rieures \u00e0 6.0.6003.23571",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2008 R2 pour syst\u00e8mes x64 Service Pack 1 versions ant\u00e9rieures \u00e0 6.1.7601.27974",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 21H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.19044.6456",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 11 Version 24H2 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.26100.6899",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2022, 23H2 Edition (Server Core installation) versions ant\u00e9rieures \u00e0 10.0.25398.1913",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2008 pour syst\u00e8mes 32 bits Service Pack 2 versions ant\u00e9rieures \u00e0 6.0.6003.23571",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2025 versions ant\u00e9rieures \u00e0 10.0.26100.6899",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 21H2 pour syst\u00e8mes 32 bits versions ant\u00e9rieures \u00e0 10.0.19044.6456",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 22H2 pour syst\u00e8mes 32 bits versions ant\u00e9rieures \u00e0 10.0.19045.6456",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 11 Version 25H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.26200.6899",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 22H2 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.19045.6456",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 11 Version 22H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.22621.6060",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2008 pour syst\u00e8mes x64 Service Pack 2 (Server Core installation) versions ant\u00e9rieures \u00e0 6.0.6003.23571",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 1809 pour syst\u00e8mes 32 bits versions ant\u00e9rieures \u00e0 10.0.17763.7919",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 11 Version 23H2 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.22631.6060",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2012 R2 (Server Core installation) versions ant\u00e9rieures \u00e0 6.3.9600.22824",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2025 (Server Core installation) versions ant\u00e9rieures \u00e0 10.0.26100.6899",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 11 Version 23H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.22631.6060",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2016 (Server Core installation) versions ant\u00e9rieures \u00e0 10.0.14393.8519",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 11 Version 24H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.26100.6899",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2008 R2 pour syst\u00e8mes x64 Service Pack 1 (Server Core installation) versions ant\u00e9rieures \u00e0 6.1.7601.27974",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2019 versions ant\u00e9rieures \u00e0 10.0.17763.7919",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 1607 pour syst\u00e8mes 32 bits versions ant\u00e9rieures \u00e0 10.0.14393.8519",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2012 versions ant\u00e9rieures \u00e0 6.2.9200.25722",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 Version 1809 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.17763.7919",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 10 pour syst\u00e8mes 32 bits versions ant\u00e9rieures \u00e0 10.0.10240.21161",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2025-55691",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55691"
    },
    {
      "name": "CVE-2025-58738",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58738"
    },
    {
      "name": "CVE-2025-58729",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58729"
    },
    {
      "name": "CVE-2025-55684",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55684"
    },
    {
      "name": "CVE-2025-59197",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59197"
    },
    {
      "name": "CVE-2025-55679",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55679"
    },
    {
      "name": "CVE-2025-55248",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55248"
    },
    {
      "name": "CVE-2025-58719",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58719"
    },
    {
      "name": "CVE-2025-59190",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59190"
    },
    {
      "name": "CVE-2025-58736",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58736"
    },
    {
      "name": "CVE-2025-59254",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59254"
    },
    {
      "name": "CVE-2025-59206",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59206"
    },
    {
      "name": "CVE-2025-59295",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59295"
    },
    {
      "name": "CVE-2025-59287",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59287"
    },
    {
      "name": "CVE-2025-55678",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55678"
    },
    {
      "name": "CVE-2025-59208",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59208"
    },
    {
      "name": "CVE-2025-58731",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58731"
    },
    {
      "name": "CVE-2025-55339",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55339"
    },
    {
      "name": "CVE-2025-59191",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59191"
    },
    {
      "name": "CVE-2025-55676",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55676"
    },
    {
      "name": "CVE-2025-58730",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58730"
    },
    {
      "name": "CVE-2025-59187",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59187"
    },
    {
      "name": "CVE-2025-55685",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55685"
    },
    {
      "name": "CVE-2025-59257",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59257"
    },
    {
      "name": "CVE-2025-58735",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58735"
    },
    {
      "name": "CVE-2025-58717",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58717"
    },
    {
      "name": "CVE-2025-59199",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59199"
    },
    {
      "name": "CVE-2025-59278",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59278"
    },
    {
      "name": "CVE-2025-59198",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59198"
    },
    {
      "name": "CVE-2025-58725",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58725"
    },
    {
      "name": "CVE-2025-55332",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55332"
    },
    {
      "name": "CVE-2025-59230",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59230"
    },
    {
      "name": "CVE-2025-55690",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55690"
    },
    {
      "name": "CVE-2025-58732",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58732"
    },
    {
      "name": "CVE-2025-59194",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59194"
    },
    {
      "name": "CVE-2025-59258",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59258"
    },
    {
      "name": "CVE-2025-55687",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55687"
    },
    {
      "name": "CVE-2025-55335",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55335"
    },
    {
      "name": "CVE-2025-53139",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-53139"
    },
    {
      "name": "CVE-2025-59192",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59192"
    },
    {
      "name": "CVE-2025-59255",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59255"
    },
    {
      "name": "CVE-2025-58726",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58726"
    },
    {
      "name": "CVE-2025-47979",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-47979"
    },
    {
      "name": "CVE-2025-59186",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59186"
    },
    {
      "name": "CVE-2025-58716",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58716"
    },
    {
      "name": "CVE-2025-58733",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58733"
    },
    {
      "name": "CVE-2025-59201",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59201"
    },
    {
      "name": "CVE-2025-58720",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58720"
    },
    {
      "name": "CVE-2025-59207",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59207"
    },
    {
      "name": "CVE-2025-55333",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55333"
    },
    {
      "name": "CVE-2025-59200",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59200"
    },
    {
      "name": "CVE-2025-59282",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59282"
    },
    {
      "name": "CVE-2025-55682",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55682"
    },
    {
      "name": "CVE-2025-55694",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55694"
    },
    {
      "name": "CVE-2025-58737",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58737"
    },
    {
      "name": "CVE-2025-55331",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55331"
    },
    {
      "name": "CVE-2025-59261",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59261"
    },
    {
      "name": "CVE-2025-55325",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55325"
    },
    {
      "name": "CVE-2025-59259",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59259"
    },
    {
      "name": "CVE-2025-55334",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55334"
    },
    {
      "name": "CVE-2025-59205",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59205"
    },
    {
      "name": "CVE-2025-48813",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-48813"
    },
    {
      "name": "CVE-2025-48004",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-48004"
    },
    {
      "name": "CVE-2025-59260",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59260"
    },
    {
      "name": "CVE-2025-55688",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55688"
    },
    {
      "name": "CVE-2025-55701",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55701"
    },
    {
      "name": "CVE-2025-59189",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59189"
    },
    {
      "name": "CVE-2025-55330",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55330"
    },
    {
      "name": "CVE-2025-55698",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55698"
    },
    {
      "name": "CVE-2025-49708",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-49708"
    },
    {
      "name": "CVE-2025-59195",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59195"
    },
    {
      "name": "CVE-2025-50152",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-50152"
    },
    {
      "name": "CVE-2025-59294",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59294"
    },
    {
      "name": "CVE-2025-59214",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59214"
    },
    {
      "name": "CVE-2025-55693",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55693"
    },
    {
      "name": "CVE-2025-59204",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59204"
    },
    {
      "name": "CVE-2025-55336",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55336"
    },
    {
      "name": "CVE-2025-24052",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-24052"
    },
    {
      "name": "CVE-2025-55338",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55338"
    },
    {
      "name": "CVE-2025-55692",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55692"
    },
    {
      "name": "CVE-2025-55326",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55326"
    },
    {
      "name": "CVE-2025-59244",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59244"
    },
    {
      "name": "CVE-2025-55696",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55696"
    },
    {
      "name": "CVE-2025-59184",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59184"
    },
    {
      "name": "CVE-2025-59209",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59209"
    },
    {
      "name": "CVE-2025-55686",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55686"
    },
    {
      "name": "CVE-2025-47827",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-47827"
    },
    {
      "name": "CVE-2025-59277",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59277"
    },
    {
      "name": "CVE-2025-59253",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59253"
    },
    {
      "name": "CVE-2025-50174",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-50174"
    },
    {
      "name": "CVE-2025-59241",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59241"
    },
    {
      "name": "CVE-2025-58728",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58728"
    },
    {
      "name": "CVE-2025-53150",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-53150"
    },
    {
      "name": "CVE-2025-59242",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59242"
    },
    {
      "name": "CVE-2025-55677",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55677"
    },
    {
      "name": "CVE-2025-59185",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59185"
    },
    {
      "name": "CVE-2025-55681",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55681"
    },
    {
      "name": "CVE-2025-58718",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58718"
    },
    {
      "name": "CVE-2025-55700",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55700"
    },
    {
      "name": "CVE-2025-59502",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59502"
    },
    {
      "name": "CVE-2025-59275",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59275"
    },
    {
      "name": "CVE-2025-59284",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59284"
    },
    {
      "name": "CVE-2025-55340",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55340"
    },
    {
      "name": "CVE-2025-58734",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58734"
    },
    {
      "name": "CVE-2025-55697",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55697"
    },
    {
      "name": "CVE-2025-59203",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59203"
    },
    {
      "name": "CVE-2025-58715",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58715"
    },
    {
      "name": "CVE-2025-55695",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55695"
    },
    {
      "name": "CVE-2025-59289",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59289"
    },
    {
      "name": "CVE-2025-58714",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58714"
    },
    {
      "name": "CVE-2025-25004",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-25004"
    },
    {
      "name": "CVE-2025-53768",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-53768"
    },
    {
      "name": "CVE-2025-55699",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55699"
    },
    {
      "name": "CVE-2025-50175",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-50175"
    },
    {
      "name": "CVE-2025-59211",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59211"
    },
    {
      "name": "CVE-2025-58739",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58739"
    },
    {
      "name": "CVE-2025-59202",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59202"
    },
    {
      "name": "CVE-2025-59193",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59193"
    },
    {
      "name": "CVE-2025-55683",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55683"
    },
    {
      "name": "CVE-2025-59280",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59280"
    },
    {
      "name": "CVE-2025-24990",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-24990"
    },
    {
      "name": "CVE-2025-59210",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59210"
    },
    {
      "name": "CVE-2025-58722",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58722"
    },
    {
      "name": "CVE-2025-59188",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59188"
    },
    {
      "name": "CVE-2025-55689",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55689"
    },
    {
      "name": "CVE-2025-58727",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-58727"
    },
    {
      "name": "CVE-2025-55328",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55328"
    },
    {
      "name": "CVE-2025-59290",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59290"
    },
    {
      "name": "CVE-2025-55680",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55680"
    },
    {
      "name": "CVE-2025-2884",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-2884"
    },
    {
      "name": "CVE-2025-53717",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-53717"
    },
    {
      "name": "CVE-2025-59196",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-59196"
    },
    {
      "name": "CVE-2025-55337",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-55337"
    },
    {
      "name": "CVE-2016-9535",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9535"
    },
    {
      "name": "CVE-2025-54957",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-54957"
    }
  ],
  "initial_release_date": "2025-10-15T00:00:00",
  "last_revision_date": "2025-10-15T00:00:00",
  "links": [],
  "reference": "CERTFR-2025-AVI-0879",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2025-10-15T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Microsoft Windows. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.\n\nMicrosoft indique que les vuln\u00e9rabilit\u00e9s CVE-2025-24990, CVE-2025-47827 et CVE-2025-59230 sont activement exploit\u00e9es.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Windows",
  "vendor_advisories": [
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59205",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59205"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55682",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55682"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58727",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58727"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59204",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59204"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59275",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59275"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-50175",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50175"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55697",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55697"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58737",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58737"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55326",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55326"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-53139",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53139"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59502",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59502"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55328",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55328"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59261",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59261"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59214",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59214"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58718",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58718"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58738",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58738"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55687",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55687"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59255",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59255"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-48004",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-48004"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59284",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59284"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58720",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58720"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55688",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55688"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55700",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55700"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59259",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59259"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59196",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59196"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55336",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55336"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55696",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55696"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55685",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55685"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55694",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55694"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-47827",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47827"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59254",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59254"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55340",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55340"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58722",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58722"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55690",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55690"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55692",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55692"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59184",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59184"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59192",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59192"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55683",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55683"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58731",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58731"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-54957",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-54957"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58714",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58714"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55689",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55689"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55693",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55693"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59194",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59194"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59289",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59289"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59211",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59211"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59197",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59197"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58736",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58736"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58716",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58716"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55333",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55333"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59190",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59190"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59198",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59198"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58729",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58729"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-53150",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53150"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59202",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59202"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58730",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58730"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58733",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58733"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59200",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59200"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55701",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55701"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58734",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58734"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55698",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55698"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-25004",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-25004"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59209",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59209"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59290",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59290"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59191",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59191"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55332",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55332"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55678",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55678"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59278",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59278"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59242",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59242"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55331",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55331"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58715",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58715"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59230",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59230"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-47979",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47979"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59188",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59188"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59201",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59201"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55677",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55677"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59244",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59244"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58719",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58719"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58739",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58739"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-24052",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24052"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58735",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58735"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55691",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55691"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55676",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55676"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55337",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55337"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59241",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59241"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55335",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55335"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59206",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59206"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59295",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59295"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55681",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55681"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55330",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55330"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59280",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59280"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59258",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59258"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59282",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59282"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59186",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59186"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55699",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55699"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-24990",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24990"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59203",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59203"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59260",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59260"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55248",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55248"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58726",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58726"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55684",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55684"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59277",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59277"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-48813",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-48813"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59193",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59193"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59189",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59189"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55339",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55339"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58728",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58728"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59207",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59207"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55338",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55338"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59210",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59210"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58717",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58717"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2016-9535",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-9535"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58725",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58725"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-2884",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-2884"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-53768",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53768"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59287",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59287"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59257",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59257"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55686",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55686"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59185",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59185"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55680",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55680"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59294",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59294"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-49708",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49708"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55334",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55334"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59187",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59187"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-50174",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50174"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-53717",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53717"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59253",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59253"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-58732",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58732"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55679",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55679"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59195",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59195"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-50152",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50152"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59199",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59199"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55695",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55695"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-55325",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55325"
    },
    {
      "published_at": "2025-10-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-59208",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59208"
    }
  ]
}

WID-SEC-W-2025-2307

Vulnerability from csaf_certbund - Published: 2025-10-14 22:00 - Updated: 2025-11-05 23:00

Summary

Microsoft Windows: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Windows ist ein Betriebssystem von Microsoft. Windows Server 2016 ist ein Betriebssystem von Microsoft. Windows Server 2019 ist ein Betriebssystem von Microsoft.

Angriff

Ein Angreifer kann mehrere Schwachstellen in Microsoft Windows Server, Microsoft Windows Server 2012, Microsoft Windows Server 2012 R2, Microsoft Windows 10, Microsoft Windows Server 2016, Microsoft Windows Server 2019, Microsoft Windows, Microsoft Windows Server 2022, Microsoft Windows 11 und Microsoft Windows Server 2025 ausnutzen, um Remote Code Execution, Privilegieneskalation, Datenexfiltration oder Systemabstürze zu verursachen.

Betroffene Betriebssysteme

- Windows

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "kritisch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Windows ist ein Betriebssystem von Microsoft.\r\nWindows Server 2016 ist ein Betriebssystem von Microsoft.\r\nWindows Server 2019 ist ein Betriebssystem von Microsoft.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Microsoft Windows Server, Microsoft Windows Server 2012, Microsoft Windows Server 2012 R2, Microsoft Windows 10, Microsoft Windows Server 2016, Microsoft Windows Server 2019, Microsoft Windows, Microsoft Windows Server 2022, Microsoft Windows 11 und Microsoft Windows Server 2025 ausnutzen, um Remote Code Execution, Privilegieneskalation, Datenexfiltration oder Systemabst\u00fcrze zu verursachen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-2307 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2307.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-2307 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2307"
      },
      {
        "category": "external",
        "summary": "Microsoft Leitfaden f\u00fcr Sicherheitsupdates",
        "url": "https://msrc.microsoft.com/update-guide/"
      },
      {
        "category": "external",
        "summary": "PoC auf Hawktrace Blog vom 2025-10-23",
        "url": "https://hawktrace.com/blog/CVE-2025-59287-UNAUTH"
      },
      {
        "category": "external",
        "summary": "Artikel auf Securityaffairs vom 2025-10-26",
        "url": "https://securityaffairs.com/183830/security/cve-2025-59287-microsoft-fixes-critical-wsus-flaw-under-active-attack.html"
      },
      {
        "category": "external",
        "summary": "Exploit auf  SSD Secure Disclosure vom 2025-11-05",
        "url": "https://ssd-disclosure.com/cloud-filter-arbitrary-file-creation-eop-patch-bypass-lpe/"
      }
    ],
    "source_lang": "en-US",
    "title": "Microsoft Windows: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-11-05T23:00:00.000+00:00",
      "generator": {
        "date": "2025-11-06T08:22:01.536+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.4.0"
        }
      },
      "id": "WID-SEC-W-2025-2307",
      "initial_release_date": "2025-10-14T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-10-14T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-10-19T22:00:00.000+00:00",
          "number": "2",
          "summary": "PoC aufgenommen"
        },
        {
          "date": "2025-10-23T22:00:00.000+00:00",
          "number": "3",
          "summary": "PoC aufgenommen"
        },
        {
          "date": "2025-10-26T23:00:00.000+00:00",
          "number": "4",
          "summary": "Aktive ausnutzung gemeldet, Bewertung angepasst"
        },
        {
          "date": "2025-11-05T23:00:00.000+00:00",
          "number": "5",
          "summary": "weiteren Exploit aufgenommen"
        }
      ],
      "status": "final",
      "version": "5"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Remote Desktop client for Desktop",
                "product": {
                  "name": "Microsoft Windows Remote Desktop client for Desktop",
                  "product_id": "T042605",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:windows:remote_desktop_client_for_desktop"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "App Client for Desktop",
                "product": {
                  "name": "Microsoft Windows App Client for Desktop",
                  "product_id": "T042613",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:windows:app_client_for_desktop"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Windows"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Version 1607",
                "product": {
                  "name": "Microsoft Windows 10 Version 1607",
                  "product_id": "T042601",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:windows_10:version_1607"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Version 1809",
                "product": {
                  "name": "Microsoft Windows 10 Version 1809",
                  "product_id": "T042602",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:windows_10:version_1809"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Version 21H2",
                "product": {
                  "name": "Microsoft Windows 10 Version 21H2",
                  "product_id": "T042606",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:windows_10:version_21h2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Version 22H2",
                "product": {
                  "name": "Microsoft Windows 10 Version 22H2",
                  "product_id": "T042608",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:windows_10:version_22h2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft Windows 10",
                "product": {
                  "name": "Microsoft Windows 10",
                  "product_id": "T047095",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:windows_10:-"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Windows 10"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Version 25H2",
                "product": {
                  "name": "Microsoft Windows 11 Version 25H2",
                  "product_id": "T025567",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:windows_11:windows_terminal"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Version 22H2",
                "product": {
                  "name": "Microsoft Windows 11 Version 22H2",
                  "product_id": "T042607",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:windows_11:version_22h2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Version 23H2",
                "product": {
                  "name": "Microsoft Windows 11 Version 23H2",
                  "product_id": "T042609",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:windows_11:version_23h2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Version 24H2",
                "product": {
                  "name": "Microsoft Windows 11 Version 24H2",
                  "product_id": "T042611",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:windows_11:version_24h2"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Windows 11"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "2008 SP2",
                "product": {
                  "name": "Microsoft Windows Server 2008 SP2",
                  "product_id": "T042596",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:windows_server:2008_sp2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "2008 R2 SP1",
                "product": {
                  "name": "Microsoft Windows Server 2008 R2 SP1",
                  "product_id": "T045208",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:windows_server:2008_r2_sp1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Windows Server"
          },
          {
            "category": "product_name",
            "name": "Microsoft Windows Server 2012",
            "product": {
              "name": "Microsoft Windows Server 2012",
              "product_id": "T043730",
              "product_identification_helper": {
                "cpe": "cpe:/o:microsoft:windows_server_2012:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Microsoft Windows Server 2012 R2",
            "product": {
              "name": "Microsoft Windows Server 2012 R2",
              "product_id": "T043731",
              "product_identification_helper": {
                "cpe": "cpe:/o:microsoft:windows_server_2012_r2:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Microsoft Windows Server 2016",
            "product": {
              "name": "Microsoft Windows Server 2016",
              "product_id": "T042600",
              "product_identification_helper": {
                "cpe": "cpe:/o:microsoft:windows_server_2016:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Microsoft Windows Server 2019",
            "product": {
              "name": "Microsoft Windows Server 2019",
              "product_id": "T042603",
              "product_identification_helper": {
                "cpe": "cpe:/o:microsoft:windows_server_2019:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "23H2 Edition",
                "product": {
                  "name": "Microsoft Windows Server 2022 23H2 Edition",
                  "product_id": "T042610",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:windows_server_2022:23h2_edition"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft Windows Server 2022",
                "product": {
                  "name": "Microsoft Windows Server 2022",
                  "product_id": "T047093",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:microsoft:windows_server_2022:-"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Windows Server 2022"
          },
          {
            "category": "product_name",
            "name": "Microsoft Windows Server 2025",
            "product": {
              "name": "Microsoft Windows Server 2025",
              "product_id": "T047092",
              "product_identification_helper": {
                "cpe": "cpe:/o:microsoft:windows_server_2025:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2016-9535",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2016-9535"
    },
    {
      "cve": "CVE-2025-24052",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-24052"
    },
    {
      "cve": "CVE-2025-24990",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-24990"
    },
    {
      "cve": "CVE-2025-25004",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-25004"
    },
    {
      "cve": "CVE-2025-2884",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-2884"
    },
    {
      "cve": "CVE-2025-47827",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-47827"
    },
    {
      "cve": "CVE-2025-47979",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-47979"
    },
    {
      "cve": "CVE-2025-48004",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-48004"
    },
    {
      "cve": "CVE-2025-48813",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-48813"
    },
    {
      "cve": "CVE-2025-49708",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-49708"
    },
    {
      "cve": "CVE-2025-50152",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-50152"
    },
    {
      "cve": "CVE-2025-50174",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-50174"
    },
    {
      "cve": "CVE-2025-50175",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-50175"
    },
    {
      "cve": "CVE-2025-53139",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-53139"
    },
    {
      "cve": "CVE-2025-53150",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-53150"
    },
    {
      "cve": "CVE-2025-53717",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-53717"
    },
    {
      "cve": "CVE-2025-53768",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-53768"
    },
    {
      "cve": "CVE-2025-54957",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-54957"
    },
    {
      "cve": "CVE-2025-55325",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55325"
    },
    {
      "cve": "CVE-2025-55326",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55326"
    },
    {
      "cve": "CVE-2025-55328",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55328"
    },
    {
      "cve": "CVE-2025-55330",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55330"
    },
    {
      "cve": "CVE-2025-55331",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55331"
    },
    {
      "cve": "CVE-2025-55332",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55332"
    },
    {
      "cve": "CVE-2025-55333",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55333"
    },
    {
      "cve": "CVE-2025-55334",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55334"
    },
    {
      "cve": "CVE-2025-55335",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55335"
    },
    {
      "cve": "CVE-2025-55336",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55336"
    },
    {
      "cve": "CVE-2025-55337",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55337"
    },
    {
      "cve": "CVE-2025-55338",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55338"
    },
    {
      "cve": "CVE-2025-55339",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55339"
    },
    {
      "cve": "CVE-2025-55340",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55340"
    },
    {
      "cve": "CVE-2025-55676",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55676"
    },
    {
      "cve": "CVE-2025-55677",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55677"
    },
    {
      "cve": "CVE-2025-55678",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55678"
    },
    {
      "cve": "CVE-2025-55679",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55679"
    },
    {
      "cve": "CVE-2025-55680",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55680"
    },
    {
      "cve": "CVE-2025-55681",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55681"
    },
    {
      "cve": "CVE-2025-55682",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55682"
    },
    {
      "cve": "CVE-2025-55683",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55683"
    },
    {
      "cve": "CVE-2025-55684",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55684"
    },
    {
      "cve": "CVE-2025-55685",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55685"
    },
    {
      "cve": "CVE-2025-55686",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55686"
    },
    {
      "cve": "CVE-2025-55687",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55687"
    },
    {
      "cve": "CVE-2025-55688",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55688"
    },
    {
      "cve": "CVE-2025-55689",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55689"
    },
    {
      "cve": "CVE-2025-55690",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55690"
    },
    {
      "cve": "CVE-2025-55691",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55691"
    },
    {
      "cve": "CVE-2025-55692",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55692"
    },
    {
      "cve": "CVE-2025-55693",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55693"
    },
    {
      "cve": "CVE-2025-55694",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55694"
    },
    {
      "cve": "CVE-2025-55695",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55695"
    },
    {
      "cve": "CVE-2025-55696",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55696"
    },
    {
      "cve": "CVE-2025-55697",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55697"
    },
    {
      "cve": "CVE-2025-55698",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55698"
    },
    {
      "cve": "CVE-2025-55699",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55699"
    },
    {
      "cve": "CVE-2025-55700",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55700"
    },
    {
      "cve": "CVE-2025-55701",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-55701"
    },
    {
      "cve": "CVE-2025-58714",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58714"
    },
    {
      "cve": "CVE-2025-58715",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58715"
    },
    {
      "cve": "CVE-2025-58716",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58716"
    },
    {
      "cve": "CVE-2025-58717",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58717"
    },
    {
      "cve": "CVE-2025-58718",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58718"
    },
    {
      "cve": "CVE-2025-58719",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58719"
    },
    {
      "cve": "CVE-2025-58720",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58720"
    },
    {
      "cve": "CVE-2025-58722",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58722"
    },
    {
      "cve": "CVE-2025-58725",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58725"
    },
    {
      "cve": "CVE-2025-58726",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58726"
    },
    {
      "cve": "CVE-2025-58727",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58727"
    },
    {
      "cve": "CVE-2025-58728",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58728"
    },
    {
      "cve": "CVE-2025-58729",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58729"
    },
    {
      "cve": "CVE-2025-58730",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58730"
    },
    {
      "cve": "CVE-2025-58731",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58731"
    },
    {
      "cve": "CVE-2025-58732",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58732"
    },
    {
      "cve": "CVE-2025-58733",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58733"
    },
    {
      "cve": "CVE-2025-58734",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58734"
    },
    {
      "cve": "CVE-2025-58735",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58735"
    },
    {
      "cve": "CVE-2025-58736",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58736"
    },
    {
      "cve": "CVE-2025-58737",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58737"
    },
    {
      "cve": "CVE-2025-58738",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58738"
    },
    {
      "cve": "CVE-2025-58739",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-58739"
    },
    {
      "cve": "CVE-2025-59184",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59184"
    },
    {
      "cve": "CVE-2025-59185",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59185"
    },
    {
      "cve": "CVE-2025-59186",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59186"
    },
    {
      "cve": "CVE-2025-59187",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59187"
    },
    {
      "cve": "CVE-2025-59188",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59188"
    },
    {
      "cve": "CVE-2025-59189",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59189"
    },
    {
      "cve": "CVE-2025-59190",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59190"
    },
    {
      "cve": "CVE-2025-59191",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59191"
    },
    {
      "cve": "CVE-2025-59192",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59192"
    },
    {
      "cve": "CVE-2025-59193",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59193"
    },
    {
      "cve": "CVE-2025-59194",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59194"
    },
    {
      "cve": "CVE-2025-59195",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59195"
    },
    {
      "cve": "CVE-2025-59196",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59196"
    },
    {
      "cve": "CVE-2025-59197",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59197"
    },
    {
      "cve": "CVE-2025-59198",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59198"
    },
    {
      "cve": "CVE-2025-59199",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59199"
    },
    {
      "cve": "CVE-2025-59200",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59200"
    },
    {
      "cve": "CVE-2025-59201",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59201"
    },
    {
      "cve": "CVE-2025-59202",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59202"
    },
    {
      "cve": "CVE-2025-59203",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59203"
    },
    {
      "cve": "CVE-2025-59204",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59204"
    },
    {
      "cve": "CVE-2025-59205",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59205"
    },
    {
      "cve": "CVE-2025-59206",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59206"
    },
    {
      "cve": "CVE-2025-59207",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59207"
    },
    {
      "cve": "CVE-2025-59208",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59208"
    },
    {
      "cve": "CVE-2025-59209",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59209"
    },
    {
      "cve": "CVE-2025-59210",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59210"
    },
    {
      "cve": "CVE-2025-59211",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59211"
    },
    {
      "cve": "CVE-2025-59214",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59214"
    },
    {
      "cve": "CVE-2025-59230",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59230"
    },
    {
      "cve": "CVE-2025-59241",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59241"
    },
    {
      "cve": "CVE-2025-59242",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59242"
    },
    {
      "cve": "CVE-2025-59244",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59244"
    },
    {
      "cve": "CVE-2025-59253",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59253"
    },
    {
      "cve": "CVE-2025-59254",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59254"
    },
    {
      "cve": "CVE-2025-59255",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59255"
    },
    {
      "cve": "CVE-2025-59257",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59257"
    },
    {
      "cve": "CVE-2025-59258",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59258"
    },
    {
      "cve": "CVE-2025-59259",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59259"
    },
    {
      "cve": "CVE-2025-59260",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59260"
    },
    {
      "cve": "CVE-2025-59261",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59261"
    },
    {
      "cve": "CVE-2025-59275",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59275"
    },
    {
      "cve": "CVE-2025-59277",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59277"
    },
    {
      "cve": "CVE-2025-59278",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59278"
    },
    {
      "cve": "CVE-2025-59280",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59280"
    },
    {
      "cve": "CVE-2025-59282",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59282"
    },
    {
      "cve": "CVE-2025-59284",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59284"
    },
    {
      "cve": "CVE-2025-59287",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59287"
    },
    {
      "cve": "CVE-2025-59289",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59289"
    },
    {
      "cve": "CVE-2025-59290",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59290"
    },
    {
      "cve": "CVE-2025-59294",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59294"
    },
    {
      "cve": "CVE-2025-59295",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59295"
    },
    {
      "cve": "CVE-2025-59502",
      "product_status": {
        "known_affected": [
          "T047092",
          "T047093",
          "T047095",
          "T042605",
          "T042606",
          "T042607",
          "T042608",
          "T042609",
          "T042596",
          "T043730",
          "T043731",
          "T042610",
          "T042600",
          "T042611",
          "T045208",
          "T042601",
          "T042602",
          "T042613",
          "T042603",
          "T025567"
        ]
      },
      "release_date": "2025-10-14T22:00:00.000+00:00",
      "title": "CVE-2025-59502"
    }
  ]
}

MSRC_CVE-2025-24990

Vulnerability from csaf_microsoft - Published: 2025-10-14 07:00 - Updated: 2025-10-14 07:00

Summary

Windows Agere Modem Driver Elevation of Privilege Vulnerability

Notes

Additional Resources

To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle

Disclaimer

The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.

Customer Action

Required. The vulnerability documented by this CVE requires customer action to resolve.

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "names": [
          "\u003ca href=\"https://x.com/shitsecure\"\u003eFabian Mosch\u003c/a\u003e with \u003ca href=\"https://www.r-tec.net/\"\u003er-tec IT Security GmbH\u003c/a\u003e\n\u003ca href=\"https://x.com/0xLegacyy\"\u003eJordan Jay \u003c/a\u003e\n"
        ]
      },
      {
        "names": [
          "Anonymous"
        ]
      },
      {
        "names": [
          "MSTIC"
        ]
      },
      {
        "names": [
          "MSTIC"
        ]
      },
      {
        "names": [
          "\u003ca href=\"https://x.com/shitsecure\"\u003eFabian Mosch\u003c/a\u003e with \u003ca href=\"https://www.r-tec.net/\"\u003er-tec IT Security GmbH\u003c/a\u003e\n\u003ca href=\"https://x.com/0xLegacyy\"\u003eJordan Jay \u003c/a\u003e\n"
        ]
      }
    ],
    "aggregate_severity": {
      "namespace": "https://www.microsoft.com/en-us/msrc/security-update-severity-rating-system",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Public",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "general",
        "text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
        "title": "Additional Resources"
      },
      {
        "category": "legal_disclaimer",
        "text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
        "title": "Disclaimer"
      },
      {
        "category": "general",
        "text": "Required. The vulnerability documented by this CVE requires customer action to resolve.",
        "title": "Customer Action"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "secure@microsoft.com",
      "name": "Microsoft Security Response Center",
      "namespace": "https://msrc.microsoft.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "CVE-2025-24990 Windows Agere Modem Driver Elevation of Privilege Vulnerability - HTML",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24990"
      },
      {
        "category": "self",
        "summary": "CVE-2025-24990 Windows Agere Modem Driver Elevation of Privilege Vulnerability - CSAF",
        "url": "https://msrc.microsoft.com/csaf/advisories/2025/msrc_cve-2025-24990.json"
      },
      {
        "category": "external",
        "summary": "Microsoft Exploitability Index",
        "url": "https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1"
      },
      {
        "category": "external",
        "summary": "Microsoft Support Lifecycle",
        "url": "https://support.microsoft.com/lifecycle"
      },
      {
        "category": "external",
        "summary": "Common Vulnerability Scoring System",
        "url": "https://www.first.org/cvss"
      }
    ],
    "title": "Windows Agere Modem Driver Elevation of Privilege Vulnerability",
    "tracking": {
      "current_release_date": "2025-10-14T07:00:00.000Z",
      "generator": {
        "date": "2025-10-14T17:00:00.062Z",
        "engine": {
          "name": "MSRC Generator",
          "version": "1.0"
        }
      },
      "id": "msrc_CVE-2025-24990",
      "initial_release_date": "2025-10-14T07:00:00.000Z",
      "revision_history": [
        {
          "date": "2025-10-14T07:00:00.000Z",
          "legacy_version": "1",
          "number": "1",
          "summary": "Information published."
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.26200.6899",
            "product": {
              "name": "Windows 11 Version 25H2 for x64-based Systems \u003c10.0.26200.6899",
              "product_id": "1"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.26200.6899",
            "product": {
              "name": "Windows 11 Version 25H2 for x64-based Systems 10.0.26200.6899",
              "product_id": "20438"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows 11 Version 25H2 for x64-based Systems"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.17763.7919",
            "product": {
              "name": "Windows 10 Version 1809 for x64-based Systems \u003c10.0.17763.7919",
              "product_id": "14"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.17763.7919",
            "product": {
              "name": "Windows 10 Version 1809 for x64-based Systems 10.0.17763.7919",
              "product_id": "11569"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows 10 Version 1809 for x64-based Systems"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.17763.7919",
            "product": {
              "name": "Windows Server 2019 \u003c10.0.17763.7919",
              "product_id": "13"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.17763.7919",
            "product": {
              "name": "Windows Server 2019 10.0.17763.7919",
              "product_id": "11571"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows Server 2019"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.17763.7919",
            "product": {
              "name": "Windows Server 2019 (Server Core installation) \u003c10.0.17763.7919",
              "product_id": "12"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.17763.7919",
            "product": {
              "name": "Windows Server 2019 (Server Core installation) 10.0.17763.7919",
              "product_id": "11572"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows Server 2019 (Server Core installation)"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.20348.4294",
            "product": {
              "name": "Windows Server 2022 \u003c10.0.20348.4294",
              "product_id": "11"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.20348.4294",
            "product": {
              "name": "Windows Server 2022 10.0.20348.4294",
              "product_id": "11923"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows Server 2022"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.20348.4294",
            "product": {
              "name": "Windows Server 2022 (Server Core installation) \u003c10.0.20348.4294",
              "product_id": "10"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.20348.4294",
            "product": {
              "name": "Windows Server 2022 (Server Core installation) 10.0.20348.4294",
              "product_id": "11924"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows Server 2022 (Server Core installation)"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.19044.6456",
            "product": {
              "name": "Windows 10 Version 21H2 for x64-based Systems \u003c10.0.19044.6456",
              "product_id": "9"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.19044.6456",
            "product": {
              "name": "Windows 10 Version 21H2 for x64-based Systems 10.0.19044.6456",
              "product_id": "11931"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows 10 Version 21H2 for x64-based Systems"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.22621.6060",
            "product": {
              "name": "Windows 11 Version 22H2 for x64-based Systems \u003c10.0.22621.6060",
              "product_id": "8"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.22621.6060",
            "product": {
              "name": "Windows 11 Version 22H2 for x64-based Systems 10.0.22621.6060",
              "product_id": "12086"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows 11 Version 22H2 for x64-based Systems"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.19045.6456",
            "product": {
              "name": "Windows 10 Version 22H2 for x64-based Systems \u003c10.0.19045.6456",
              "product_id": "7"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.19045.6456",
            "product": {
              "name": "Windows 10 Version 22H2 for x64-based Systems 10.0.19045.6456",
              "product_id": "12097"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows 10 Version 22H2 for x64-based Systems"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.26100.6899",
            "product": {
              "name": "Windows Server 2025 (Server Core installation) \u003c10.0.26100.6899",
              "product_id": "2"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.26100.6899",
            "product": {
              "name": "Windows Server 2025 (Server Core installation) 10.0.26100.6899",
              "product_id": "12437"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows Server 2025 (Server Core installation)"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.22631.6060",
            "product": {
              "name": "Windows 11 Version 23H2 for x64-based Systems \u003c10.0.22631.6060",
              "product_id": "6"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.22631.6060",
            "product": {
              "name": "Windows 11 Version 23H2 for x64-based Systems 10.0.22631.6060",
              "product_id": "12243"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows 11 Version 23H2 for x64-based Systems"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.25398.1913",
            "product": {
              "name": "Windows Server 2022, 23H2 Edition (Server Core installation) \u003c10.0.25398.1913",
              "product_id": "5"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.25398.1913",
            "product": {
              "name": "Windows Server 2022, 23H2 Edition (Server Core installation) 10.0.25398.1913",
              "product_id": "12244"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows Server 2022, 23H2 Edition (Server Core installation)"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.26100.6899",
            "product": {
              "name": "Windows 11 Version 24H2 for x64-based Systems \u003c10.0.26100.6899",
              "product_id": "4"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.26100.6899",
            "product": {
              "name": "Windows 11 Version 24H2 for x64-based Systems 10.0.26100.6899",
              "product_id": "12390"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows 11 Version 24H2 for x64-based Systems"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.26100.6899",
            "product": {
              "name": "Windows Server 2025 \u003c10.0.26100.6899",
              "product_id": "3"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.26100.6899",
            "product": {
              "name": "Windows Server 2025 10.0.26100.6899",
              "product_id": "12436"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows Server 2025"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.10240.21161",
            "product": {
              "name": "Windows 10 for x64-based Systems \u003c10.0.10240.21161",
              "product_id": "18"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.10240.21161",
            "product": {
              "name": "Windows 10 for x64-based Systems 10.0.10240.21161",
              "product_id": "10735"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows 10 for x64-based Systems"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.14393.8519",
            "product": {
              "name": "Windows 10 Version 1607 for x64-based Systems \u003c10.0.14393.8519",
              "product_id": "16"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.14393.8519",
            "product": {
              "name": "Windows 10 Version 1607 for x64-based Systems 10.0.14393.8519",
              "product_id": "10853"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows 10 Version 1607 for x64-based Systems"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.14393.8519",
            "product": {
              "name": "Windows Server 2016 \u003c10.0.14393.8519",
              "product_id": "17"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.14393.8519",
            "product": {
              "name": "Windows Server 2016 10.0.14393.8519",
              "product_id": "10816"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows Server 2016"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.14393.8519",
            "product": {
              "name": "Windows Server 2016 (Server Core installation) \u003c10.0.14393.8519",
              "product_id": "15"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.14393.8519",
            "product": {
              "name": "Windows Server 2016 (Server Core installation) 10.0.14393.8519",
              "product_id": "10855"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows Server 2016 (Server Core installation)"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c6.0.6003.23571",
            "product": {
              "name": "Windows Server 2008 for x64-based Systems Service Pack 2 \u003c6.0.6003.23571",
              "product_id": "26"
            }
          },
          {
            "category": "product_version",
            "name": "6.0.6003.23571",
            "product": {
              "name": "Windows Server 2008 for x64-based Systems Service Pack 2 6.0.6003.23571",
              "product_id": "9318"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows Server 2008 for x64-based Systems Service Pack 2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c6.0.6003.23571",
            "product": {
              "name": "Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) \u003c6.0.6003.23571",
              "product_id": "25"
            }
          },
          {
            "category": "product_version",
            "name": "6.0.6003.23571",
            "product": {
              "name": "Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) 6.0.6003.23571",
              "product_id": "9344"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c6.1.7601.27974",
            "product": {
              "name": "Windows Server 2008 R2 for x64-based Systems Service Pack 1 \u003c6.1.7601.27974",
              "product_id": "23"
            }
          },
          {
            "category": "product_version",
            "name": "6.1.7601.27974",
            "product": {
              "name": "Windows Server 2008 R2 for x64-based Systems Service Pack 1 6.1.7601.27974",
              "product_id": "10051"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows Server 2008 R2 for x64-based Systems Service Pack 1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c6.1.7601.27974",
            "product": {
              "name": "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) \u003c6.1.7601.27974",
              "product_id": "24"
            }
          },
          {
            "category": "product_version",
            "name": "6.1.7601.27974",
            "product": {
              "name": "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) 6.1.7601.27974",
              "product_id": "10049"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c6.2.9200.25722",
            "product": {
              "name": "Windows Server 2012 \u003c6.2.9200.25722",
              "product_id": "22"
            }
          },
          {
            "category": "product_version",
            "name": "6.2.9200.25722",
            "product": {
              "name": "Windows Server 2012 6.2.9200.25722",
              "product_id": "10378"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows Server 2012"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c6.2.9200.25722",
            "product": {
              "name": "Windows Server 2012 (Server Core installation) \u003c6.2.9200.25722",
              "product_id": "21"
            }
          },
          {
            "category": "product_version",
            "name": "6.2.9200.25722",
            "product": {
              "name": "Windows Server 2012 (Server Core installation) 6.2.9200.25722",
              "product_id": "10379"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows Server 2012 (Server Core installation)"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c6.3.9600.22824",
            "product": {
              "name": "Windows Server 2012 R2 \u003c6.3.9600.22824",
              "product_id": "20"
            }
          },
          {
            "category": "product_version",
            "name": "6.3.9600.22824",
            "product": {
              "name": "Windows Server 2012 R2 6.3.9600.22824",
              "product_id": "10483"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows Server 2012 R2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c6.3.9600.22824",
            "product": {
              "name": "Windows Server 2012 R2 (Server Core installation) \u003c6.3.9600.22824",
              "product_id": "19"
            }
          },
          {
            "category": "product_version",
            "name": "6.3.9600.22824",
            "product": {
              "name": "Windows Server 2012 R2 (Server Core installation) 6.3.9600.22824",
              "product_id": "10543"
            }
          }
        ],
        "category": "product_name",
        "name": "Windows Server 2012 R2 (Server Core installation)"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-24990",
      "cwe": {
        "id": "CWE-822",
        "name": "Untrusted Pointer Dereference"
      },
      "notes": [
        {
          "category": "general",
          "text": "Microsoft",
          "title": "Assigning CNA"
        },
        {
          "category": "faq",
          "text": "An attacker who successfully exploited this vulnerability could gain administrator privileges.",
          "title": "What privileges could be gained by an attacker who successfully exploited the vulnerability?"
        },
        {
          "category": "faq",
          "text": "No. All supported versions of Windows can be affected by a successful exploitation of this vulnerability, even if the modem is not actively being used.",
          "title": "Is the vulnerability only exploitable if the Agere Modem is actively being used?"
        }
      ],
      "product_status": {
        "fixed": [
          "9318",
          "9344",
          "10049",
          "10051",
          "10378",
          "10379",
          "10483",
          "10543",
          "10735",
          "10816",
          "10853",
          "10855",
          "11569",
          "11571",
          "11572",
          "11923",
          "11924",
          "11931",
          "12086",
          "12097",
          "12243",
          "12244",
          "12390",
          "12436",
          "12437",
          "20438"
        ],
        "known_affected": [
          "1",
          "2",
          "3",
          "4",
          "5",
          "6",
          "7",
          "8",
          "9",
          "10",
          "11",
          "12",
          "13",
          "14",
          "15",
          "16",
          "17",
          "18",
          "19",
          "20",
          "21",
          "22",
          "23",
          "24",
          "25",
          "26"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-24990 Windows Agere Modem Driver Elevation of Privilege Vulnerability - HTML",
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24990"
        },
        {
          "category": "self",
          "summary": "CVE-2025-24990 Windows Agere Modem Driver Elevation of Privilege Vulnerability - CSAF",
          "url": "https://msrc.microsoft.com/csaf/advisories/2025/msrc_cve-2025-24990.json"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-10-14T07:00:00.000Z",
          "details": "10.0.26200.6899:Security Update:https://support.microsoft.com/help/5066835",
          "product_ids": [
            "1"
          ],
          "url": "https://support.microsoft.com/help/5066835"
        },
        {
          "category": "vendor_fix",
          "date": "2025-10-14T07:00:00.000Z",
          "details": "10.0.17763.7919:Security Update:https://support.microsoft.com/help/5066586",
          "product_ids": [
            "14",
            "13",
            "12"
          ],
          "url": "https://support.microsoft.com/help/5066586"
        },
        {
          "category": "vendor_fix",
          "date": "2025-10-14T07:00:00.000Z",
          "details": "10.0.20348.4294:Security Update:https://support.microsoft.com/help/5066782",
          "product_ids": [
            "11",
            "10"
          ],
          "url": "https://support.microsoft.com/help/5066782"
        },
        {
          "category": "vendor_fix",
          "date": "2025-10-14T07:00:00.000Z",
          "details": "10.0.19044.6456:Security Update:https://support.microsoft.com/help/5066791",
          "product_ids": [
            "9"
          ],
          "url": "https://support.microsoft.com/help/5066791"
        },
        {
          "category": "vendor_fix",
          "date": "2025-10-14T07:00:00.000Z",
          "details": "10.0.22621.6060:Security Update:https://support.microsoft.com/help/5066793",
          "product_ids": [
            "8"
          ],
          "url": "https://support.microsoft.com/help/5066793"
        },
        {
          "category": "vendor_fix",
          "date": "2025-10-14T07:00:00.000Z",
          "details": "10.0.19045.6456:Security Update:https://support.microsoft.com/help/5066791",
          "product_ids": [
            "7"
          ],
          "url": "https://support.microsoft.com/help/5066791"
        },
        {
          "category": "vendor_fix",
          "date": "2025-10-14T07:00:00.000Z",
          "details": "10.0.26100.6899:Security Update:https://support.microsoft.com/help/5066835",
          "product_ids": [
            "2",
            "4",
            "3"
          ],
          "url": "https://support.microsoft.com/help/5066835"
        },
        {
          "category": "vendor_fix",
          "date": "2025-10-14T07:00:00.000Z",
          "details": "10.0.22631.6060:Security Update:https://support.microsoft.com/help/5066793",
          "product_ids": [
            "6"
          ],
          "url": "https://support.microsoft.com/help/5066793"
        },
        {
          "category": "vendor_fix",
          "date": "2025-10-14T07:00:00.000Z",
          "details": "10.0.25398.1913:Security Update:https://support.microsoft.com/help/5066780",
          "product_ids": [
            "5"
          ],
          "url": "https://support.microsoft.com/help/5066780"
        },
        {
          "category": "vendor_fix",
          "date": "2025-10-14T07:00:00.000Z",
          "details": "10.0.10240.21161:Security Update:https://support.microsoft.com/help/5066837",
          "product_ids": [
            "18"
          ],
          "url": "https://support.microsoft.com/help/5066837"
        },
        {
          "category": "vendor_fix",
          "date": "2025-10-14T07:00:00.000Z",
          "details": "10.0.14393.8519:Security Update:https://support.microsoft.com/help/5066836",
          "product_ids": [
            "16",
            "17",
            "15"
          ],
          "url": "https://support.microsoft.com/help/5066836"
        },
        {
          "category": "vendor_fix",
          "date": "2025-10-14T07:00:00.000Z",
          "details": "6.0.6003.23571:Monthly Rollup:https://support.microsoft.com/help/5066874",
          "product_ids": [
            "26",
            "25"
          ],
          "url": "https://support.microsoft.com/help/5066874"
        },
        {
          "category": "vendor_fix",
          "date": "2025-10-14T07:00:00.000Z",
          "details": "6.0.6003.23571:Security Only:https://support.microsoft.com/help/5066877",
          "product_ids": [
            "26",
            "25"
          ],
          "url": "https://support.microsoft.com/help/5066877"
        },
        {
          "category": "vendor_fix",
          "date": "2025-10-14T07:00:00.000Z",
          "details": "6.1.7601.27974:Monthly Rollup:https://support.microsoft.com/help/5066872",
          "product_ids": [
            "23",
            "24"
          ],
          "url": "https://support.microsoft.com/help/5066872"
        },
        {
          "category": "vendor_fix",
          "date": "2025-10-14T07:00:00.000Z",
          "details": "6.1.7601.27974:Security Only:https://support.microsoft.com/help/5066876",
          "product_ids": [
            "23",
            "24"
          ],
          "url": "https://support.microsoft.com/help/5066876"
        },
        {
          "category": "vendor_fix",
          "date": "2025-10-14T07:00:00.000Z",
          "details": "6.2.9200.25722:Monthly Rollup:https://support.microsoft.com/help/5066875",
          "product_ids": [
            "22",
            "21"
          ],
          "url": "https://support.microsoft.com/help/5066875"
        },
        {
          "category": "vendor_fix",
          "date": "2025-10-14T07:00:00.000Z",
          "details": "6.3.9600.22824:Monthly Rollup:https://support.microsoft.com/help/5066873",
          "product_ids": [
            "20",
            "19"
          ],
          "url": "https://support.microsoft.com/help/5066873"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalsScore": 0.0,
            "exploitCodeMaturity": "FUNCTIONAL",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "remediationLevel": "OFFICIAL_FIX",
            "reportConfidence": "CONFIRMED",
            "scope": "UNCHANGED",
            "temporalScore": 7.2,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C",
            "version": "3.1"
          },
          "products": [
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8",
            "9",
            "10",
            "11",
            "12",
            "13",
            "14",
            "15",
            "16",
            "17",
            "18",
            "19",
            "20",
            "21",
            "22",
            "23",
            "24",
            "25",
            "26"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Elevation of Privilege"
        },
        {
          "category": "exploit_status",
          "details": "Publicly Disclosed:No;Exploited:Yes;Latest Software Release:Exploitation Detected"
        }
      ],
      "title": "Windows Agere Modem Driver Elevation of Privilege Vulnerability"
    }
  ]
}

FKIE_CVE-2025-24990

Vulnerability from fkie_nvd - Published: 2025-10-14 17:15 - Updated: 2025-11-18 17:03

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

References

URL	Tags
secure@microsoft.com	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24990	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://www.vicarius.io/vsociety/posts/cve-2025-24990-detection-script-elevation-of-privilege-vulnerability-in-agere-modem-driver-affecting-windows	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://www.vicarius.io/vsociety/posts/cve-2025-24990-mitigation-script-elevation-of-privilege-vulnerability-in-agere-modem-driver-affecting-windows	Mitigation, Third Party Advisory
134c704f-9b21-4f2e-91b3-4a467353bcc0	https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-24990	US Government Resource

Impacted products

Vendor	Product	Version
microsoft	windows_10_1507	*
microsoft	windows_10_1607	*
microsoft	windows_10_1809	*
microsoft	windows_10_21h2	*
microsoft	windows_10_22h2	*
microsoft	windows_11_22h2	*
microsoft	windows_11_23h2	*
microsoft	windows_11_24h2	*
microsoft	windows_11_25h2	*
microsoft	windows_server_2008	-
microsoft	windows_server_2008	r2
microsoft	windows_server_2012	-
microsoft	windows_server_2012	r2
microsoft	windows_server_2016	*
microsoft	windows_server_2019	*
microsoft	windows_server_2022	*
microsoft	windows_server_2022_23h2	*
microsoft	windows_server_2025	*

JSON

To clipboard

{
  "cisaActionDue": "2025-11-04",
  "cisaExploitAdd": "2025-10-14",
  "cisaRequiredAction": "Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.",
  "cisaVulnerabilityName": "Microsoft Windows Untrusted Pointer Dereference Vulnerability",
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x64:*",
              "matchCriteriaId": "030F3214-D6AF-40A9-9FC9-523AC9870581",
              "versionEndExcluding": "10.0.10240.21161",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*",
              "matchCriteriaId": "D8145D41-BFB2-47A6-B5E5-1A038A27C1C1",
              "versionEndExcluding": "10.0.14393.8519",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
              "matchCriteriaId": "E216CD5B-8885-4E17-8718-97E88A724A44",
              "versionEndExcluding": "10.0.17763.7919",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:x64:*",
              "matchCriteriaId": "8EA6DE31-A17D-43D4-9154-49B5FA8FB5A6",
              "versionEndExcluding": "10.0.19044.6456",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:x64:*",
              "matchCriteriaId": "B5441F68-143C-4091-B709-14CAC586DF76",
              "versionEndExcluding": "10.0.19045.6456",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:x64:*",
              "matchCriteriaId": "EF253003-2A82-4CFB-A6A3-267B3C485056",
              "versionEndExcluding": "10.0.22621.6060",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_11_23h2:*:*:*:*:*:*:x64:*",
              "matchCriteriaId": "85672C76-ADAD-468B-8C20-8A3587DA008A",
              "versionEndIncluding": "10.0.22631.6060",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_11_24h2:*:*:*:*:*:*:x64:*",
              "matchCriteriaId": "4A557865-B254-47F6-953B-340EF93FDB2B",
              "versionEndExcluding": "10.0.26100.6899",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_11_25h2:*:*:*:*:*:*:x64:*",
              "matchCriteriaId": "A7382D6B-5E7D-4769-BC40-0120F08DC6B1",
              "versionEndExcluding": "10.0.26200.6899",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*",
              "matchCriteriaId": "2127D10C-B6F3-4C1D-B9AA-5D78513CC996",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*",
              "matchCriteriaId": "AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "860ADFF9-62D0-425B-9310-99ACFC92EB12",
              "versionEndIncluding": "10.0.14393.8519",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "20810926-AEC9-4C09-9C52-B4B8FADECF3A",
              "versionEndExcluding": "10.0.17763.7919",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "B1C1EA69-6BB8-4E59-8659-43581FDB48B7",
              "versionEndExcluding": "10.0.20348.4294",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2022_23h2:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "370C12D6-90EF-44BE-8070-AA0080C12600",
              "versionEndExcluding": "10.0.25398.1913",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "CD6268EB-C42B-406F-B3FF-6E694F93BF41",
              "versionEndIncluding": "10.0.26100.6899",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Microsoft is aware of vulnerabilities in the third party Agere Modem driver that ships natively with supported Windows operating systems.  This is an announcement of the upcoming removal of ltmdm64.sys driver.  The driver has been removed in the October cumulative update.\nFax modem hardware dependent on this specific driver will no longer work on Windows.\nMicrosoft recommends removing any existing dependencies on this hardware."
    }
  ],
  "id": "CVE-2025-24990",
  "lastModified": "2025-11-18T17:03:38.993",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "secure@microsoft.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-10-14T17:15:39.193",
  "references": [
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24990"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://www.vicarius.io/vsociety/posts/cve-2025-24990-detection-script-elevation-of-privilege-vulnerability-in-agere-modem-driver-affecting-windows"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mitigation",
        "Third Party Advisory"
      ],
      "url": "https://www.vicarius.io/vsociety/posts/cve-2025-24990-mitigation-script-elevation-of-privilege-vulnerability-in-agere-modem-driver-affecting-windows"
    },
    {
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "tags": [
        "US Government Resource"
      ],
      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-24990"
    }
  ],
  "sourceIdentifier": "secure@microsoft.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-822"
        }
      ],
      "source": "secure@microsoft.com",
      "type": "Secondary"
    }
  ]
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-24990 (GCVE-0-2025-24990)

CISA Known Exploited Vulnerability

Data from the CISA Known Exploited Vulnerabilities Catalog

GHSA-9G9X-FC99-93R6

NCSC-2025-0310

CERTFR-2025-AVI-0879

Solutions

CERTFR-2025-AVI-0879

Solutions

WID-SEC-W-2025-2307

MSRC_CVE-2025-24990

FKIE_CVE-2025-24990

Tags

Sightings

Nomenclature