PT-2025-32815 · Microsoft · Kernel Streaming Wow Thunk Service Driver+1
Aleksandr Koshelev
·
Published
2025-08-12
·
Updated
2026-01-19
·
CVE-2025-53149
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Windows Kernel Streaming WOW Thunk Service Driver versions prior to a patch released in September 2025
Description
A heap-based buffer overflow exists in the Windows Kernel Streaming WOW Thunk Service Driver (
ksthunk.sys). This issue allows an authorized attacker to elevate privileges locally, potentially gaining SYSTEM-level access. The vulnerability is related to a buffer overflow in dynamically allocated memory within the driver. Exploitation of this issue can allow an attacker to affect the system.Recommendations
Apply the patch released in September 2025 to address the vulnerability.
Exploit
Fix
Heap Based Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Kernel Streaming Wow Thunk Service Driver
Windows