Microsoft Brokering File System Elevation of Privilege Vulnerability_MS:CVE-2025-54105

7 / 10

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.

Visit Original Source

Basic Information

ID MS:CVE-2025-54105

Published Sep 9, 2025 at 07:00

{
    "lastseen": "2025-09-09T17:37:48",
    "description": "Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.\n",
    "published": "2025-09-09T07:00:00",
    "modified": "2025-09-09T07:00:00",
    "type": "mscve",
    "title": "Microsoft Brokering File System Elevation of Privilege Vulnerability",
    "source": "",
    "references": "",
    "id": "MS:CVE-2025-54105",
    "bulletinFamily": "microsoft",
    "cwe": null,
    "cvelist": [
        "CVE-2025-54105"
    ],
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 7,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-54105",
    "category_name": "News",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Description

Basic Information

💭 Join the Security Discussion ❌ Cancel Reply