Microsoft Windows Server 2012
Moderate fix1 remedy
cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*
Moderate fix1 remedy
Microsoft Windows Push Notification Core Information Disclosure Vulnerability
Vulnerability
A vulnerability in Windows Push Notification Core allows an authorized attacker to locally disclose sensitive information. This issue affects multiple Windows versions, including Windows 10, Windows 11, Windows Server 2012, 2016, 2019, 2022, and 2025. The vulnerability arises from the improper handling of memory addresses related to the 'EventLog' Windows service, creating an opportunity for information exposure.
Impact
Exploitation of this vulnerability could lead to unauthorized disclosure of memory addresses belonging to the 'EventLog' Windows service.
Remediation
Users can apply the security update for this vulnerability, which is available through the Microsoft Update Catalog. Specific update details can be found in the Microsoft Knowledge Base articles KB5066791, KB5066793, KB5066835, KB5066836, KB5066586, and KB5066875.
Added: Oct 14, 2025, 6:39 PM
Updated: Oct 14, 2025, 9:10 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
2.5exploitability
3.3remediation
7.7relevance
0.7threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.