← Back

CVE-2025-29838

nvd nist
Published: May 13, 2025Modified: May 19, 2025

JSON object

Loading...
7.0
Vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.0 / Impact: 5.9
Source: NVD

Description

Null pointer dereference in Windows Drivers allows an unauthorized attacker to elevate privileges locally.

Affected (3)

Microsoft
2 products
Windows 11 24h2
Windows Server 2025
Configuration A
3 vulnerable
Vulnerable SoftwareAffected Versions
Microsoft
Windows 11 24h2
Before 10.0.26100.4061
Windows 11 24h2
Before 10.0.26100.4061
Windows Server 2025
Before 10.0.26100.4061

Related CWEs

CWE-476
NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.

References (1)

Source: secure@microsoft.com
Vendor Advisory

Timeline

No history available yet.