CVE-2025-53156

Опубликовано: 12 авг. 2025

Источник: msrc

CVSS3: 5.5

EPSS Низкий

Описание

Windows Storage Port Driver Information Disclosure Vulnerability

Exposure of sensitive information to an unauthorized actor in Storage Port Driver allows an authorized attacker to disclose information locally.

What type of information could be disclosed by this vulnerability?

Exploiting this vulnerability could allow the disclosure of certain kernel memory content.

Продукт	Статья	Обновление
Windows Server 2022, 23H2 Edition (Server Core installation)	5063899	SecurityUpdate
Windows 11 Version 24H2 for ARM64-based Systems	5063878 5064010	Security Update SecurityHotpatchUpdate
Windows 11 Version 24H2 for x64-based Systems	5063878 5064010	Security Update SecurityHotpatchUpdate
Windows Server 2025	5063878 5064010	Security Update SecurityHotpatchUpdate
Windows Server 2025 (Server Core installation)	5063878 5064010	Security Update SecurityHotpatchUpdate

Показывать по

Publicly Disclosed

Exploited

Latest Software Release

Exploitation More Likely

DOS

N/A

EPSS

Процентиль: 16%

0.00053

Низкий

5.5 Medium

CVSS3

CVE-2025-53156

CVSS3: 5.5

nvd

3 дня назад

Exposure of sensitive information to an unauthorized actor in Storage Port Driver allows an authorized attacker to disclose information locally.

GHSA-2mc5-3c8c-rg8r

CVSS3: 5.5

github

3 дня назад

Exposure of sensitive information to an unauthorized actor in Storage Port Driver allows an authorized attacker to disclose information locally.

EPSS

Процентиль: 16%

0.00053

Низкий

5.5 Medium

CVSS3