CVE-2025-30388

Name of the Vulnerable Software and Affected Versions: Windows Win32K versions prior to the fixed version

Description: The issue is a heap-based buffer overflow in Windows Win32K - GRFX, allowing an unauthorized attacker to execute code locally. This enables an attacker to gain SYSTEM-level access via improper memory handling. The vulnerability can be exploited by remote attackers to execute arbitrary code and affect the system.

Recommendations: For versions prior to the fixed version, update to the latest version to resolve the issue. As a temporary workaround, consider restricting access to the GRFX component until a patch is applied. Avoid using the vulnerable Windows Win32K - GRFX functionality until the issue is resolved.