Microsoft Windows Server 2012
Moderate fix2 remedies
cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*
Moderate fix2 remedies
Actively Exploited in the Wild
This vulnerability is being actively exploited in the wild.
Microsoft Windows NTFS Out-of-Bounds Read Vulnerability Allowing Local Information Disclosure
Vulnerability
Exploited
A vulnerability allowing out-of-bounds read has been identified in the Windows NTFS file system. This issue allows an authorized attacker to locally disclose information by reading small portions of heap memory. The vulnerability arises when a local user is tricked into mounting a specially crafted virtual hard disk (VHD), which then triggers the out-of-bounds read condition.
Impact
Exploitation of this vulnerability could lead to unauthorized local information disclosure.
Remediation
Users can apply the security updates provided in the Microsoft Knowledge Base articles KB5053598, KB5053599, KB5053620, KB5053627, KB5053886, KB5053887, KB5053888, KB5053594, and KB5053618 to address this vulnerability.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
0.6exploitability
6.1remediation
7.7relevance
0.0threat
8.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.