Microsoft Xbox Gaming Services
4 CVEs affecting Microsoft Xbox Gaming Services. Latest disclosed: 2025-10-14. Critical: 0, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-28916 | High | 8.8 | 2024-03-21 | Xbox Gaming Services Elevation of Privilege Vulnerability |
CVE-2025-59281 | High | 7.8 | 2025-10-14 | Improper link resolution before file access ('link following') in XBox Gaming Services allows an authorized attacker to elevate privileges locally. |
CVE-2025-55245 | High | 7.8 | 2025-09-09 | Improper link resolution before file access ('link following') in Xbox allows an authorized attacker to elevate privileges locally. |
CVE-2025-55242 | Medium | 6.5 | 2025-09-04 | Exposure of sensitive information to an unauthorized actor in Xbox allows an unauthorized attacker to disclose information over a network. |