CyberSecurity

Affected software updated with new package information. 

Updated acknowledgment. 

Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally. 

Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally. 

Use after free in Windows Device Association Broker service allows an authorized attacker to elevate privileges locally. 

Incorrect implementation of authentication algorithm in Microsoft Exchange Server allows an unauthorized attacker to elevate privileges locally. 

Improper link resolution before file access (‘link following’) in .NET allows an authorized attacker to elevate privileges locally. 

Microsoft is aware of [AMD-SB-3020 | CVE-2025-0033](http://https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3020.html) disclosed by AMD on October 13, 2025. CVE-2025-0033 is a vulnerability in AMD EPYC processors using Secure Encrypted Virtualization – Secure Nested Paging (SEV-SNP). It involves a race condition during Reverse Map Table (RMP) initialization that could allow a malicious or compromised hypervisor to modify RMP entries before

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information. 

Azure Entra ID Elevation of Privilege Vulnerability