Microsoft Windows Server 2012
Moderate fix1 remedy
cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*
Moderate fix1 remedy
Microsoft Windows NTFS Privilege Escalation Vulnerability
Vulnerability
A vulnerability allowing out-of-bounds read in Windows NTFS has been identified, which could enable an unauthorized attacker to locally elevate privileges. This issue affects several versions of Windows, including Windows 10 (both x64-based and 32-bit systems), Windows Server 2016, Windows Server 2019, and Windows Server 2012 R2. The vulnerability arises because an attacker can trick a local user into mounting a specially crafted virtual hard disk (VHD), which would trigger the out-of-bounds read and potentially allow the attacker to gain SYSTEM privileges.
Impact
Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing an attacker to gain SYSTEM privileges on the affected machine.
Remediation
Security updates addressing this vulnerability are available through the Microsoft Update Catalog. Specific update details can be found in the Microsoft Knowledge Base articles KB5055547, KB5055519, KB5055521, and KB5055557.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
5.0exploitability
4.4remediation
7.7relevance
0.0threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.