CVE-2025-62570

Опубликовано: 09 дек. 2025

Источник: msrc

CVSS3: 7.1

EPSS Низкий

Описание

Windows Camera Frame Server Monitor Information Disclosure Vulnerability

Improper access control in Windows Camera Frame Server Monitor allows an authorized attacker to disclose information locally.

What type of information could be disclosed by this vulnerability?

Exploiting this vulnerability could allow the disclosure of certain kernel memory content.

Продукт	Статья	Обновление
Windows 11 Version 24H2 for ARM64-based Systems	5072033 5072014	Security Update Security Hotpatch Update
Windows 11 Version 24H2 for x64-based Systems	5072033 5072014	Security Update Security Hotpatch Update
Windows Server 2025	5072033 5072014	Security Update Security Hotpatch Update
Windows Server 2025 (Server Core installation)	5072033 5072014	Security Update Security Hotpatch Update
Windows 11 Version 25H2 for ARM64-based Systems	5072033 5072014	Security Update Security Hotpatch Update
Windows 11 Version 25H2 for x64-based Systems	5072033 5072014	Security Update Security Hotpatch Update

Показывать по

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Less Likely

EPSS

Процентиль: 15%

0.00047

Низкий

7.1 High

CVSS3

CVE-2025-62570

CVSS3: 7.1

nvd

8 дней назад

Improper access control in Windows Camera Frame Server Monitor allows an authorized attacker to disclose information locally.

GHSA-8gxc-vgjg-vjrc

CVSS3: 7.1

github

8 дней назад

Improper access control in Windows Camera Frame Server Monitor allows an authorized attacker to disclose information locally.

BDU:2025-15539

CVSS3: 7.1

fstec

9 дней назад

Уязвимость компонента Windows Camera Frame Server Monitor операционных систем Windows, позволяющая нарушителю раскрыть защищаемую информацию

EPSS

Процентиль: 15%

0.00047

Низкий

7.1 High

CVSS3