What is the CVSS score of CVE-2025-49694?

CVE-2025-49694 has a CVSS 3.1 base score of 7.8 (High). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.1%.

Which versions of Windows 11 24h2 are affected by CVE-2025-49694?

CVE-2025-49694 is a privilege escalation vulnerability in Microsoft Brokering File System that allows authenticated local users to crash or gain elevated system permissions.. A patch is available.

How to fix or mitigate CVE-2025-49694?

Within 24 hours: Identify all systems running Microsoft Brokering File System and assess exposure scope. Within 7 days: Apply vendor-released patch to all affected systems and validate successful deployment. Within 30 days: Conduct privilege escalation attack surface review and implement principle of least privilege across local user accounts.

Windows 11 24h2 CVE-2025-49694

EUVD-2025-20633 HIGH

NULL Pointer Dereference (CWE-476)

2025-07-08 secure@microsoft.com

Microsoft Null Pointer Dereference Denial Of Service Windows 11 24h2 Windows Server 2022 23h2 Windows Server 2025

7.8

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

7.8 HIGH

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Updated

Apr 16, 2026 - 06:30 EUVD-patch-fix

executive_summary

Re-analysis Queued

Apr 16, 2026 - 05:29 backfill_euvd_patch

patch_released

Patch available

Apr 16, 2026 - 05:29 EUVD

10.0.26100.4652,10.0.25398.1732

EUVD ID Assigned

Mar 16, 2026 - 04:21 euvd

EUVD-2025-20633

Analysis Generated

Mar 16, 2026 - 04:21 vuln.today

CVE Published

Jul 08, 2025 - 17:15 nvd

HIGH 7.8

DescriptionCVE.org

Null pointer dereference in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.

Analysis

Null pointer dereference in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.

Technical ContextAI

A NULL pointer dereference occurs when the application attempts to use a pointer that has not been initialized or has been set to NULL.

RemediationAI

Add NULL checks before pointer dereference operations. Use static analysis to identify potential NULL pointer issues. Enable compiler warnings.

CVE-2025-49694 vulnerability details – vuln.today

Back

Windows 11 24h2 CVE-2025-49694

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

Analysis

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code