Elevation of Privilege Vulnerability in Windows Cloud Files Mini Filter Driver
CVE-2025-62221
Key Information:
- Vendor
Microsoft
- Status
- Vendor
- CVE Published:
- 9 December 2025
Badges
What is CVE-2025-62221?
A use after free vulnerability in the Windows Cloud Files Mini Filter Driver can allow an authorized attacker to execute local privilege escalation. By exploiting this flaw, attackers may gain elevated privileges, potentially compromising system integrity. It is crucial for users to be aware of this risk and apply the necessary security patches provided by Microsoft to safeguard their systems.
CISA has reported CVE-2025-62221
CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2025-62221 as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace
The CISA's recommendation is: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Affected Version(s)
Windows 10 Version 1809 32-bit Systems 10.0.17763.0 < 10.0.17763.8146
Windows 10 Version 21H2 32-bit Systems 10.0.19044.0 < 10.0.19044.6691
Windows 10 Version 22H2 ARM64-based Systems 10.0.19045.0 < 10.0.19045.6691
News Articles
theregister.comReferences
CVSS V3.1
Timeline
- πΎ
Exploit known to exist
- π¦
CISA Reported
- π°
First article discovered by theregister.com
Vulnerability published
Vulnerability Reserved