CVE-2025-29970

Name of the Vulnerable Software and Affected Versions Microsoft Brokering File System (affected versions not specified)

Description An elevation-of-privilege issue exists in the Microsoft Brokering File System. This allows an authorized attacker to elevate privileges locally. The issue is related to a use-after-free condition, where memory is accessed after it has been freed. Exploitation of this issue may allow an attacker to affect the system. The Microsoft Brokering File System is a driver that was introduced with Win32-App-isolation, a sandbox-like mechanism to separate application access to resources on Windows clients. The driver has been a recurring source of vulnerabilities in recent Patch Tuesdays and remains a promising attack surface due to increasing efforts in sandboxing applications on Windows.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.