Microsoft Windows Server 2012
Moderate fix1 remedy
cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*
Moderate fix1 remedy
Microsoft Windows Local Session Manager Denial-of-Service Vulnerability
Vulnerability
A denial-of-service vulnerability has been identified in the Windows Local Session Manager (LSM) across several versions of Windows Server, Windows 10, and Windows 11. This vulnerability arises from improper validation of certain types of input, allowing an authorized attacker to disrupt service over the network.
Impact
Exploitation of this vulnerability leads to a significant disruption of service, causing systems to become unresponsive or unavailable.
Remediation
Users can apply the security update for this vulnerability, which is included in the October 2025 Monthly Rollup, available through the Microsoft Update Catalog. Specific update details can be found in the Microsoft Knowledge Base articles KB5066791, KB5066835, KB5066836, KB5066780, KB5066782, KB5066873, KB5066875, and KB5066586.
Added: Oct 14, 2025, 6:09 PM
Updated: Oct 14, 2025, 8:35 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
2.5exploitability
3.3remediation
7.7relevance
0.7threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.