Microsoft Windows Server 2016
Moderate fix1 remedy
cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*
Moderate fix1 remedy
Microsoft Windows File Explorer Information Disclosure Vulnerability
Vulnerability
A vulnerability in Windows File Explorer allows an authorized attacker to locally disclose sensitive information. This issue affects multiple Windows versions, including Windows 10, Windows 11, Windows Server 2016, Windows Server 2022, and Windows Server 2019. The vulnerability arises from the improper handling of object addresses in a sandboxed environment, potentially exposing information from high-integrity applications.
Impact
Successful exploitation could allow an attacker to access sensitive information, such as addresses of objects in a high-integrity execution environment, which could be exploited further.
Remediation
Users can apply the security update KB5073722 for Windows 10, KB5073457 for Windows Server 2022, KB5073723 for Windows Server 2019, and KB5074109 for Windows 11. Instructions for downloading these security updates are available on the Microsoft Update Catalog.
Added: Jan 13, 2026, 8:14 PM
Updated: Jan 13, 2026, 8:14 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
2.5exploitability
3.3remediation
7.7relevance
2.0threat
0.0urgency
2.9incentive
0.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.