Microsoft Windows 10
Moderate fix4 remedies
cpe:2.3:o:microsoft:windows_10:*:*:*:*:*:*:*
Moderate fix4 remedies
Microsoft Windows COM Privilege Escalation Vulnerability
Vulnerability
Patched
A heap-based buffer overflow vulnerability has been identified in the Windows Component Object Model (COM) that allows an authorized attacker to elevate privileges locally. This vulnerability affects several versions of Windows, including various releases of Windows 10, Windows 11, Windows Server 2022, and other server versions. The vulnerability arises from a heap-based buffer overflow, which can be exploited to gain higher privileges, potentially reaching SYSTEM level.
Impact
Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing an attacker to gain elevated rights on the affected system.
Remediation
Users can apply the security update KB5066791 for Windows 10, KB5066793 for Windows 11, and KB5066782 for Windows Server 2022. For other affected Windows Server versions, the corresponding security update can be found through the Microsoft Update Catalog.
Added: Oct 14, 2025, 7:24 PM
Updated: Oct 15, 2025, 12:23 AM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
7.5exploitability
3.3remediation
7.7relevance
0.8threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.