Primary

Context

Microsoft Windows Kernel Information Disclosure Vulnerability

Vulnerability

A vulnerability exists in the Windows Kernel that allows unauthorized attackers to locally disclose sensitive information by inserting it into a log file. This could lead to unintentional read access of kernel memory from a user mode process.

Impact

Exploitation of this vulnerability could result in unauthorized access to sensitive information stored in kernel memory, potentially allowing an attacker to read confidential data from the kernel space.

Remediation

Users can apply the security update for their specific version of Windows Server. Security update KB5073722 is available for Windows Server 2016, KB5074109 for Windows Server 2025, KB5073450 for Windows Server 2022 (23H2 Edition), KB5073723 for Windows Server 2019, and KB5073457 for Windows Server 2022. For Windows Server 2025 (Server Core installation), the same security update KB5074109 applies.

Added: Jan 13, 2026, 8:18 PM

Updated: Jan 13, 2026, 8:18 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.7

remediation

0.0

relevance

2.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.7

remediation

0.0

relevance

2.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Windows Kernel Information Disclosure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating