Microsoft Windows Server 2025
Moderate fix1 remedy
cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*
Moderate fix1 remedy
Microsoft Windows TPM Out-of-Bounds Read Vulnerability Allowing Information Disclosure
Vulnerability
A vulnerability allowing out-of-bounds read has been identified in the Windows Trusted Platform Module (TPM). This issue allows an authorized attacker to locally disclose information. The vulnerability affects multiple Windows products, including Windows 10, Windows 11, Windows Server 2019, Windows Server 2022, Windows Server 2025, and various Windows 11 and Windows Server 2022 editions for ARM64-based systems.
Impact
Exploitation of this vulnerability could lead to unauthorized information disclosure, allowing access to secrets or privileged information belonging to the user of the affected application.
Remediation
Users can download the security update for this vulnerability via the Microsoft Update Catalog. Specific update details can be found in the Microsoft Knowledge Base articles KB5073724, KB5073457, KB5073379, and KB5074109.
Added: Jan 13, 2026, 8:09 PM
Updated: Jan 13, 2026, 8:09 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
2.5exploitability
3.3remediation
7.7relevance
2.0threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.