PT-2025-28511 · Microsoft · Virtual Hard Disk+1

Donghyeon Oh

Published

2025-07-08

Updated

2025-09-16

CVE-2025-47973

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined.

Description: A buffer over-read issue in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally. This issue affects Virtual Hard Disk (VHDX), enabling an attacker to gain elevated privileges on the local system.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Over-read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-126CWE-73

Related Identifiers

BDU:2025-08305

BDU:2025-08307

CVE-2025-47973

Affected Products

Virtual Hard Disk

Windows

PT-2025-28511 · Microsoft · Virtual Hard Disk+1

CVE-2025-47973

Weakness Enumeration

Related Identifiers

Affected Products

References · 11