PT-2025-21009 · Microsoft · Windows Ntfs+1

Will Dormann

·

Published

2025-05-13

·

Updated

2025-07-26

·

CVE-2025-32707

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions: Windows NTFS (affected versions not specified)
Description: The issue is an out-of-bounds read in Windows NTFS, allowing an unauthorized attacker to elevate privileges locally. This could potentially lead to SYSTEM-level access risk. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.
Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability. However, it is recommended to apply the MS update KB5002695 to stay safe.

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

BDU:2025-05589
CVE-2025-32707

Affected Products

Windows
Windows Ntfs