Fixed Intel

CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Dec 30, 2025

High
CISA KEV

CVE-2025-62221

MicrosoftWindows

Microsoft Windows Cloud Files Mini Filter Driver contains a use after free vulnerability that can allow an authorized attacker to elevate privileges locally.

Required Action

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-62221 ; https://nvd.nist.gov/vuln/detail/CVE-2025-62221

Vulnerability Overview

Severity
High
CISA KEV
Yes
Ransomware
Unknown
Published
Dec 9, 2025
KEV Added
Dec 9, 2025
Due Date
Dec 30, 2025
Related Articles
0

Vendor

Microsoft

Windows