Primary

Context

Microsoft Windows MBT Transport Driver Privilege Escalation Vulnerability

Vulnerability

A vulnerability allowing untrusted pointer dereference in the Windows MBT Transport driver has been identified. This flaw enables an authorized attacker to locally elevate privileges. The vulnerability affects multiple versions of Windows Server, including 2012 R2, 2008 R2, and 2008, across various installation types such as Server Core and standard installations.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing an attacker to gain SYSTEM privileges.

Remediation

Users can apply the security updates released in July 2025. For specific update details, refer to the Microsoft Update Catalog.

Added: Aug 21, 2025, 8:21 PM

Updated: Aug 21, 2025, 8:21 PM

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

7.5

exploitability

3.5

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

7.5

exploitability

3.5

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Windows MBT Transport Driver Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Microsoft Windows Server 2012

Microsoft Windows Server 2008

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating