CVE-2025-53149

Published Aug 12, 2025

Last updated 4 days ago

CVSS high 7.8
WOW Thunk Service Driver

Overview

AI description

Automated description summarized from trusted sources.

CVE-2025-53149 is a heap-based buffer overflow vulnerability found in the Kernel Streaming WOW Thunk Service Driver. An authorized attacker with local access could exploit this vulnerability to elevate their privileges. The vulnerability exists in the Windows Kernel Streaming component (ks.sys) and the WOW thunking code paths. Exploitation involves sending crafted I/O control codes (IOCTLs) or malformed data to the driver. A patch has been made available by Microsoft.

Description
Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver allows an authorized attacker to elevate privileges locally.
Source
secure@microsoft.com
NVD status
Modified
Products
windows_10_1507, windows_10_1607, windows_10_1809, windows_10_21h2, windows_10_22h2, windows_11_22h2, windows_11_23h2, windows_11_24h2, windows_server_2008, windows_server_2012, windows_server_2016, windows_server_2019, windows_server_2022, windows_server_2022_23h2, windows_server_2025

Risk scores

CVSS 3.1

Type
Secondary
Base score
7.8
Impact score
5.9
Exploitability score
1.8
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity
HIGH

Weaknesses

secure@microsoft.com
CWE-122

Social media

Hype score
Not currently trending

  1. ***CVE-2025-53149*** Heap Overflow en ksthunk.sys → permite elevación de privilegios locales en Windows *Parche liberado: 12/08/2025 *No requiere interacción del usuario Detalles: •NVD: https://t.co/APBFF4lMtY •Tenable: https://t.co/CCfvOcpfDJ •CrowdFense:

    @carlosthevargas

    7 Sept 2025

    51 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. به تازگی آسیب پذیری جدیدی با کد شناسایی CVE-2025-53149 از نوع Buffer Overflow برای سیستم عامل Windows منتشر شده است. این آسیب پذیری که دارای نمره 7.8 می باشد باعث ارتقای سطح د

    @AmirHossein_sec

    6 Sept 2025

    60 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. Windowsにおいて深刻な権限昇格脆弱性(CVE-2025-53149)が発見され、2025年8月の月例更新で修正された。問題はKernel Streaming WOW Thunk Service Driver非ページヒープベースのバッファオーバーフローである。

    @yousukezan

    5 Sept 2025

    1366 Impressions

    2 Retweets

    6 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. An Analysis of Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver - CVE-2025-53149 https://t.co/dLpRIrIg2F https://t.co/7BQ4QpFxj1

    @secharvesterx

    5 Sept 2025

    61 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. Technical deep-dive into CVE-2025-53149, a heap-based buffer overflow in the Windows Kernel Streaming WOW Thunk Service driver (ksthunk.sys). https://t.co/KJ08k0EHKm

    @crowdfense

    4 Sept 2025

    16223 Impressions

    32 Retweets

    104 Likes

    62 Bookmarks

    1 Reply

    2 Quotes

  6. CVE-2025-53149 Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver allows an authorized attacker to elevate privileges locally. https://t.co/bCHctrUG4D

    @CVEnew

    12 Aug 2025

    174 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations

References

Sources include official advisories and independent security research.