CVE-2025-55681

CVSS v3.1

7.8

High

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Windows versions (affected versions not specified)

Description An out-of-bounds read issue exists in the Desktop Window Manager (DWM) of Windows operating systems. Exploitation of this issue can allow an attacker to elevate privileges locally. The issue involves reading beyond the boundaries of a memory buffer. Exploitation first triggers an out-of-bounds bug to execute shellcode, then MapViewOfFile is hooked to tamper with shared memory and abuse consent.exe, and finally a malicious DLL is loaded to execute cmd. This allows local attackers to escalate privileges to the SYSTEM level.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

LPE

Untrusted Pointer Dereference

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-822CWE-125

Related Identifiers

BDU:2025-13274

CVE-2025-55681

Affected Products

Windows

Desktop Windows Manager

CVE-2025-55681

Weakness Enumeration

Related Identifiers

Affected Products

References · 17