Microsoft Windows Hyper-V Out-of-Bounds Read Vulnerability Leading to Local Remote Code Execution

A vulnerability allowing out-of-bounds read has been identified in Windows Hyper-V. This issue allows an unauthorized attacker to execute code locally. The vulnerability exists in several versions of Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, Windows Server 2022, and Windows Server 2025. To exploit this vulnerability, an authenticated attacker on a guest virtual machine (VM) would need to send specially crafted file operation requests to hardware resources, potentially leading to remote code execution on the host server.

Impact

Exploitation of this vulnerability could allow an authenticated attacker on a guest VM to execute code on the host server.

Remediation

Users can download the security update for this vulnerability via the Microsoft Update Catalog. Specific update details can be found in the Microsoft Knowledge Base articles KB5094122, KB5094123, KB5095051, KB5094126, and KB5093998.