Brokering File System
by Microsoft
CVEs (21)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-30007 | Hig | 0.57 | 8.8 | 0.01 | May 14, 2024 | Microsoft Brokering File System Elevation of Privilege Vulnerability | ||
| CVE-2026-32091 | Hig | 0.55 | 8.4 | 0.00 | Apr 14, 2026 | Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally. | ||
| CVE-2026-26181 | Hig | 0.51 | 7.8 | 0.00 | Apr 14, 2026 | Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-49694 | Hig | 0.51 | 7.8 | 0.00 | Jul 8, 2025 | Null pointer dereference in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-49693 | Hig | 0.51 | 7.8 | 0.00 | Jul 8, 2025 | Double free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-29970 | Hig | 0.51 | 7.8 | 0.00 | May 13, 2025 | Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-21372 | Hig | 0.51 | 7.8 | 0.00 | Jan 14, 2025 | Microsoft Brokering File System Elevation of Privilege Vulnerability | ||
| CVE-2025-21315 | Hig | 0.51 | 7.8 | 0.01 | Jan 14, 2025 | Microsoft Brokering File System Elevation of Privilege Vulnerability | ||
| CVE-2024-28907 | Hig | 0.51 | 7.8 | 0.01 | Apr 9, 2024 | Microsoft Brokering File System Elevation of Privilege Vulnerability | ||
| CVE-2024-28905 | Hig | 0.51 | 7.8 | 0.00 | Apr 9, 2024 | Microsoft Brokering File System Elevation of Privilege Vulnerability | ||
| CVE-2024-28904 | Hig | 0.51 | 7.8 | 0.00 | Apr 9, 2024 | Microsoft Brokering File System Elevation of Privilege Vulnerability | ||
| CVE-2025-49677 | Hig | 0.49 | 7.0 | 0.01 | Jul 8, 2025 | Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-32219 | Hig | 0.46 | 7.0 | 0.00 | Apr 14, 2026 | Double free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. | ||
| CVE-2024-26213 | Hig | 0.46 | 7.0 | 0.01 | Apr 9, 2024 | Microsoft Brokering File System Elevation of Privilege Vulnerability | ||
| CVE-2026-25167 | 0.00 | — | 0.00 | Mar 10, 2026 | Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally. | |||
| CVE-2025-62569 | 0.00 | — | 0.00 | Dec 9, 2025 | Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-62469 | 0.00 | — | 0.00 | Dec 9, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-59189 | 0.00 | — | 0.00 | Oct 14, 2025 | Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally. | |||
| CVE-2025-48004 | 0.00 | — | 0.02 | Oct 14, 2025 | Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally. | |||
| CVE-2025-54105 | 0.00 | — | 0.00 | Sep 9, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. |
- risk 0.57cvss 8.8epss 0.01
Microsoft Brokering File System Elevation of Privilege Vulnerability
- risk 0.55cvss 8.4epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Null pointer dereference in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Double free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Microsoft Brokering File System Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.01
Microsoft Brokering File System Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.01
Microsoft Brokering File System Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.00
Microsoft Brokering File System Elevation of Privilege Vulnerability
- risk 0.51cvss 7.8epss 0.00
Microsoft Brokering File System Elevation of Privilege Vulnerability
- risk 0.49cvss 7.0epss 0.01
Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
- risk 0.46cvss 7.0epss 0.00
Double free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
- risk 0.46cvss 7.0epss 0.01
Microsoft Brokering File System Elevation of Privilege Vulnerability
- CVE-2026-25167Mar 10, 2026risk 0.00cvss —epss 0.00
Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally.
- CVE-2025-62569Dec 9, 2025risk 0.00cvss —epss 0.00
Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
- CVE-2025-62469Dec 9, 2025risk 0.00cvss —epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
- CVE-2025-59189Oct 14, 2025risk 0.00cvss —epss 0.00
Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally.
- CVE-2025-48004Oct 14, 2025risk 0.00cvss —epss 0.02
Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally.
- CVE-2025-54105Sep 9, 2025risk 0.00cvss —epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
Page 1 of 2