PT-2025-1163 · Microsoft · Windows Telephony Service+1

Published

2025-01-14

Updated

2025-11-18

CVE-2025-21250

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

The Windows Telephony Service is affected by a remote code execution issue, which can be exploited by remote attackers to execute arbitrary code and impact the system. This issue is considered critical. The vulnerable software is Windows Telephony Service, but no specific versions are mentioned. A potential exploit may be found at https://t.co/3Jem6brrcx. #WindowsTelephonyService #RemoteCodeExecution #Windows #RCE #Exploit #WindowsVulnerability #TelephonyService #RemoteAttack #CodeExecution #CriticalVulnerability

Fix

RCE

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-122

Related Identifiers

BDU:2025-00444

CVE-2025-21250

Affected Products

Windows

Windows Telephony Service

PT-2025-1163 · Microsoft · Windows Telephony Service+1

CVE-2025-21250

Weakness Enumeration

Related Identifiers

Affected Products

References · 10