CVE-2025-62215

Name of the Vulnerable Software and Affected Versions Microsoft Windows (affected versions not specified)

Description A race condition exists within the Windows Kernel, allowing an authorized attacker with local access to elevate privileges. This issue is actively exploited and has been identified as a zero-day vulnerability. Successful exploitation involves winning a race condition, potentially granting the attacker SYSTEM-level privileges. The vulnerability stems from improper synchronization when accessing shared resources, specifically a double free condition. This flaw could allow attackers to hijack system execution flow and gain complete control of the system. Reports indicate that this vulnerability is being actively weaponized by threat actors. Approximately 31 articles have been published regarding this vulnerability from various internet sources.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.