CVE-2025-53805

Опубликовано: 09 сент. 2025

Источник: msrc

CVSS3: 7.5

EPSS Низкий

Описание

HTTP.sys Denial of Service Vulnerability

Out-of-bounds read in Windows Internet Information Services allows an unauthorized attacker to deny service over a network.

Продукт	Статья	Обновление
Windows Server 2022	5065432 5065306	Security Update SecurityHotpatchUpdate
Windows Server 2022 (Server Core installation)	5065432 5065306	Security Update SecurityHotpatchUpdate
Windows 11 Version 22H2 for ARM64-based Systems	5065431	Security Update
Windows 11 Version 22H2 for x64-based Systems	5065431	Security Update
Windows 11 Version 23H2 for ARM64-based Systems	5065431	Security Update
Windows 11 Version 23H2 for x64-based Systems	5065431	Security Update
Windows Server 2022, 23H2 Edition (Server Core installation)	5065425	Security Update
Windows 11 Version 24H2 for ARM64-based Systems	5065426 5065474	Security Update SecurityHotpatchUpdate
Windows 11 Version 24H2 for x64-based Systems	5065426 5065474	Security Update SecurityHotpatchUpdate
Windows Server 2025	5065426 5065474	Security Update SecurityHotpatchUpdate

Показывать по

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Unlikely

EPSS

Процентиль: 31%

0.00117

Низкий

7.5 High

CVSS3

CVE-2025-53805

CVSS3: 7.5

nvd

около 2 месяцев назад

Out-of-bounds read in Windows Internet Information Services allows an unauthorized attacker to deny service over a network.

GHSA-j53j-mff4-vmcg

CVSS3: 7.5

github

около 2 месяцев назад

Out-of-bounds read in Windows Internet Information Services allows an unauthorized attacker to deny service over a network.

BDU:2025-11044

CVSS3: 7.5

fstec

около 2 месяцев назад

Уязвимость драйвера HTTP.sys операционных систем Windows, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 31%

0.00117

Низкий

7.5 High

CVSS3