Elevation of Privilege Vulnerability in Microsoft Brokering File System
CVE-2025-29970

7.8HIGH

Key Information:

Vendor

Microsoft
Status
Windows Server 2025 (server Core Installation)
Windows Server 2022, 23h2 Edition (server Core Installation)
Windows 11 Version 24h2
Windows Server 2025
Vendor
CVE Published:
13 May 2025

Badges

πŸ“ˆ Score: 122πŸ‘Ύ Exploit ExistsπŸ“° News Worthy

What is CVE-2025-29970?

CVE-2025-29970 is an elevation of privilege vulnerability found in the Microsoft Brokering File System, which is integral to various Microsoft services that manage file interactions. This vulnerability emerges from a "use after free" flaw, allowing an authorized attacker with local access to elevate their privileges within the system. Such unauthorized privilege escalation could allow the attacker to access sensitive information, execute malicious code, or alter system configurations. Organizations relying on Microsoft services for file management may find themselves at risk if this vulnerability is exploited, leading to unauthorized access and potential data breaches.

Potential Impact of CVE-2025-29970

  1. Unauthorized Access to Sensitive Data: The ability to elevate privileges can grant attackers access to confidential information that is otherwise protected, which can lead to data leaks or breaches.

  2. Compromise of System Integrity: Once an attacker gains higher privileges, they may manipulate system settings and permissions, potentially leading to further exploitation or the installation of malicious software.

  3. Increased Attack Surface: Organizations may face heightened risks as exploited privileges can facilitate lateral movement within the network, allowing attackers to find additional vulnerabilities or sensitive assets to target.

Affected Version(s)

Windows 11 Version 24H2 ARM64-based Systems 10.0.26100.0 < 10.0.26100.4061

Windows Server 2022, 23H2 Edition (Server Core installation) x64-based Systems 10.0.25398.0 < 10.0.25398.1611

Windows Server 2025 (Server Core installation) x64-based Systems 10.0.26100.0 < 10.0.26100.4061

News Articles

favicon imageCybersecurityNews

Microsoft Brokering File System Vulnerability Let Attackers Escalate Privileges

Microsoft has fixed a serious Windows BFS driver, that allow local attackers gain higher privileges, posing a risk to enterprise systems.

1 week ago

favicon imagegbhackers.com

Microsoft Brokering File System Vulnerability Enables Local Privilege Escalation

Microsoft has addressed a critical use-after-free vulnerability in its Brokering File System (BFS) driver that could allow attackers to escalate privileges on Windows systems.

1 week ago

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...
vendor-advisory

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • πŸ‘Ύ

    Exploit known to exist

  • πŸ“°

    First article discovered by gbhackers.com

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2025-29970 : Elevation of Privilege Vulnerability in Microsoft Brokering File System