Volerion logoVolerion
Volerion logoVolerion

Microsoft Windows Inbox COM Objects Use-After-Free Vulnerability Leading to Local Remote Code Execution

Vulnerability

A use-after-free vulnerability has been identified in Inbox COM Objects, allowing an unauthorized attacker to execute code locally. This vulnerability arises from improper memory management, which creates a race condition that can be exploited under certain conditions.

Impact

Exploitation of this vulnerability allows for remote code execution on the affected system.

Remediation

Users can apply the security update KB5066835 to address this vulnerability. This update is available through the Microsoft Update Catalog.

Added: Oct 14, 2025, 7:15 PM
Updated: Oct 14, 2025, 9:31 PM

Vulnerability Rating

Custom Algorithm
spread
8.4
impact
7.5
exploitability
4.0
remediation
7.7
relevance
0.7
threat
0.0
urgency
2.9
incentive
0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.