PT-2025-42037 · Microsoft · Windows Resilient File System+1

Published

2025-10-14

Updated

2025-10-27

CVE-2025-55687

CVSS v3.1

7.4

High

Vector

AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Windows Resilient File System (ReFS) (affected versions not specified)

Description A race condition exists due to improper synchronization when concurrent processes access shared resources within Windows Resilient File System (ReFS). This allows an attacker with local access to potentially elevate privileges. The issue can lead to privilege escalation from a standard user to SYSTEM-level privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

LPE

Use After Free

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416CWE-362

Related Identifiers

BDU:2025-13217

CVE-2025-55687

Affected Products

Windows

Windows Resilient File System

PT-2025-42037 · Microsoft · Windows Resilient File System+1

CVE-2025-55687

Weakness Enumeration

Related Identifiers

Affected Products

References · 9