SB2025070945 - Multiple vulnerabilities in Microsoft Windows Virtualization-Based Security (VBS) 

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2025070945

SB2025070945 - Multiple vulnerabilities in Microsoft Windows Virtualization-Based Security (VBS)

Published: July 9, 2025

Security Bulletin ID SB2025070945
Severity
Low
Patch available
YES
Number of vulnerabilities 3
Exploitation vector Local access
Highest impact Code execution

Breakdown by Severity

Low 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 3 secuirty vulnerabilities.


1) Missing support for integrity check (CVE-ID: CVE-2025-48803)

The vulnerability allows a local user to compromise the target system.

The vulnerability exists due to missing support for integrity check in Windows Virtualization-Based Security (VBS). A local administrator can gain elevated privileges on the target system.


2) Missing support for integrity check (CVE-ID: CVE-2025-48811)

The vulnerability allows a local user to compromise the target system.

The vulnerability exists due to missing support for integrity check in Windows Virtualization-Based Security (VBS) Enclave. A local administrator can gain elevated privileges on the target system.


3) Protection Mechanism Failure (CVE-ID: CVE-2025-47159)

The vulnerability allows a local user to bypass implemented security restrictions.

The vulnerability exists due to insufficient implementation of security measures in Windows Virtualization-Based Security (VBS). A local user can bypass implemented security restrictions and elevate privileges on the system.


Remediation

Install update from vendor's website.

References