Brokering File System
by Microsoft
CVEs (14)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-32091 | Hig | 0.55 | 8.4 | 0.00 | Apr 14, 2026 | Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally. | ||
| CVE-2026-26181 | Hig | 0.51 | 7.8 | 0.00 | Apr 14, 2026 | Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-32219 | Hig | 0.46 | 7.0 | 0.00 | Apr 14, 2026 | Double free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-49677 | 0.03 | — | 0.03 | Jul 8, 2025 | Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-25167 | 0.00 | — | 0.00 | Mar 10, 2026 | Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally. | |||
| CVE-2025-62569 | 0.00 | — | 0.00 | Dec 9, 2025 | Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-62469 | 0.00 | — | 0.00 | Dec 9, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-59189 | 0.00 | — | 0.00 | Oct 14, 2025 | Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally. | |||
| CVE-2025-48004 | 0.00 | — | 0.00 | Oct 14, 2025 | Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally. | |||
| CVE-2025-54105 | 0.00 | — | 0.00 | Sep 9, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-53142 | 0.00 | — | 0.00 | Aug 12, 2025 | Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-49693 | 0.00 | — | 0.01 | Jul 8, 2025 | Double free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-49694 | 0.00 | — | 0.01 | Jul 8, 2025 | Null pointer dereference in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-29970 | 0.00 | — | 0.01 | May 13, 2025 | Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. |
- risk 0.55cvss 8.4epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
- risk 0.46cvss 7.0epss 0.00
Double free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
- CVE-2025-49677Jul 8, 2025risk 0.03cvss —epss 0.03
Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
- CVE-2026-25167Mar 10, 2026risk 0.00cvss —epss 0.00
Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally.
- CVE-2025-62569Dec 9, 2025risk 0.00cvss —epss 0.00
Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
- CVE-2025-62469Dec 9, 2025risk 0.00cvss —epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
- CVE-2025-59189Oct 14, 2025risk 0.00cvss —epss 0.00
Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally.
- CVE-2025-48004Oct 14, 2025risk 0.00cvss —epss 0.00
Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally.
- CVE-2025-54105Sep 9, 2025risk 0.00cvss —epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
- CVE-2025-53142Aug 12, 2025risk 0.00cvss —epss 0.00
Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
- CVE-2025-49693Jul 8, 2025risk 0.00cvss —epss 0.01
Double free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
- CVE-2025-49694Jul 8, 2025risk 0.00cvss —epss 0.01
Null pointer dereference in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
- CVE-2025-29970May 13, 2025risk 0.00cvss —epss 0.01
Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.