This is unacceptable in every respect. Windows CLFS zero-day exploit is active in the wild yet Microsoft ignores Window 10 22H2 32 bit/64 bit? Yet!! They patched older, EOL / EOS Windows 10 versions. What is Microsoft thinking?
Are the updates for Windows 10 for x64-based Systems and Windows 10 for 32-bit Systems currently available?
The security update for Windows 10 for x64-based Systems and Windows 10 for 32-bit Systems are not immediately available. The updates will be released as soon as possible, and when they are available, customers will be notified via a revision to this CVE information.
What privileges could be gained by an attacker who successfully exploited this vulnerability?
An attacker who successfully exploited this vulnerability could gain SYSTEM privileges.
I’m a bit confused by the statement in Microsoft’s MSRC Security Update Guide for CVE-2025-29824 at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29824 that states “The security update for Windows 10 for x64-based Systems and Windows 10 for 32-bit Systems are not immediately available. The updates will be released as soon as possible, and when they are available, customers will be notified via a revision to this CVE information.”
The entries in that CVE-2025-29824 guide for two generic-sounding products called “Windows 10 for 32-bit Systems” and “Windows 10 for x64-based Systems” do not list a patch …
… but if you scroll down it indicates 32-bit and 64-bit editions of both Win 10 v21H2 and v22H2 were patched on 08-Apr-2025 by this month’s cumulative Quality update KB5055518. For Win 10 v22H2:
