Primary

Context

Microsoft Windows TCP/IP Null Pointer Dereference Denial-of-Service Vulnerability

Vulnerability

Patched

A null pointer dereference vulnerability has been identified in the Windows TCP/IP stack. This issue allows an unauthorized attacker to cause a denial-of-service condition over the network. The vulnerability arises from improper handling of null pointers, which can be exploited to disrupt network services.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing affected systems to become unresponsive or unavailable over the network.

Remediation

Users can apply the security update KB5089548 for Windows 11 and KB5087539 for Windows Server 2025. Instructions for downloading these updates are available through the Microsoft Update Catalog.

Added: May 12, 2026, 7:32 PM

Updated: May 12, 2026, 7:32 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

5.4

remediation

7.7

relevance

8.1

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

5.4

remediation

7.7

relevance

8.1

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Windows TCP/IP Null Pointer Dereference Denial-of-Service Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Microsoft Windows 11

Microsoft Windows Server

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating