**Name of the Vulnerable Software and Affected Versions:**

Microsoft Windows versions prior to the March 2025 security update.

**Description:**

An integer overflow or wraparound vulnerability exists in the Windows Fast FAT File System Driver. This flaw allows an unauthorized attacker to execute code locally. The vulnerability has been actively exploited in the wild, with threat actors utilizing a backdoor named PipeMagic. Exploitation requires user interaction, such as tricking users into mounting malicious VHD files. The vulnerability can allow remote attackers to execute arbitrary code and affect the system.

**Recommendations:**

Apply the March 2025 security update to mitigate this vulnerability.