This page lists publicly disclosed CVE vulnerabilities affecting microsoft xbox_gaming_services (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-59281 | Improper link resolution before file access ('link following') in XBox Gaming Services allows an authorized attacker to elevate privileges locally. | [email protected] | 7.8 | 0.06% | 2025-10-14 | 2025-10-17 |
| CVE-2025-55245 | Improper link resolution before file access ('link following') in Xbox allows an authorized attacker to elevate privileges locally. | [email protected] | 7.8 | 0.46% | 2025-09-09 | 2025-09-12 |
| CVE-2025-55242 | Exposure of sensitive information to an unauthorized actor in Xbox allows an unauthorized attacker to disclose information over a network. | [email protected] | 6.5 | 1.31% | 2025-09-04 | 2025-09-18 |
| CVE-2024-28916 | Xbox Gaming Services Elevation of Privilege Vulnerability | [email protected] | 8.8 | 0.70% | 2024-03-21 | 2025-01-08 |