AI description
CVE-2025-62468 is an out-of-bounds read vulnerability in the Windows Defender Firewall Service. An authenticated attacker with high-level privileges can exploit this vulnerability locally to retrieve sensitive information from the affected system. The vulnerability is classified as CWE-125, which means the program can read data beyond the intended buffer's end. To exploit this vulnerability, an attacker must already have access to the target machine and possess administrative credentials. If successful, the attacker can view sensitive data residing in the process memory that was not intended to be accessible. Microsoft has addressed this vulnerability as part of its December 2025 security updates.
- Description
- Out-of-bounds read in Windows Defender Firewall Service allows an authorized attacker to disclose information locally.
- Source
- secure@microsoft.com
- NVD status
- Modified
- Products
- windows_11_23h2, windows_11_24h2, windows_11_25h2, windows_server_2022_23h2, windows_server_2025
CVSS 3.1
- Type
- Primary
- Base score
- 5.5
- Impact score
- 3.6
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
- secure@microsoft.com
- CWE-125
- Hype score
- Not currently trending
Windows Defender Firewall Flaw [ CVE-2025-62468] Turns Off Your Security to Steal Private Data. (Patch NOW) Read the full report on - https://t.co/7fVFK9xdfO https://t.co/sqyl9KJ5Sg
@Iambivash007
11 Dec 2025
7 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Vulnerabilidad en Firewall de Windows expone datos sensibles. 🚨 ¡Atención! Detectada vulnerabilidad crítica en el Firewall de Windows Defender (CVE-2025-62468). ⚠️ Podría permitir a atacantes acceder a memoria sensible del sistema. 💻 Mantente alerta y busca actualiz
@elhackernet
11 Dec 2025
12034 Impressions
81 Retweets
203 Likes
55 Bookmarks
2 Replies
3 Quotes
آسیب پذیری جدیدی با کد شناسایی CVE-2025-62468 از نوع انتشار اطلاعات برای Windows Defender منتشر شده است، هکرها با استفاده از این آسیب پذیری به دیتای موجود در memory دسترسی
@EthicalSafe
10 Dec 2025
39 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
This month MSRC fixed my Windows Defender info leak vulnerability CVE-2025-62468, but all acknowledgments are incorrect. First, I provided a working exploit, so it’s not “exploitable unlikely.”😅https://t.co/TXNxu8XPjU https://t.co/ZjF7redx9w
@KeyZ3r0
10 Dec 2025
10338 Impressions
11 Retweets
132 Likes
23 Bookmarks
3 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_11_23h2:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6DCE32D0-A9E0-4029-AB35-5E202A42AF01",
"versionEndExcluding": "10.0.22631.6345"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_24h2:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8DCD2A6E-7CD0-4FCC-AC11-5A1470776C24",
"versionEndExcluding": "10.0.26100.7392"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_25h2:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8EA08CDD-D682-403D-8B50-879EB4D88C67",
"versionEndExcluding": "10.0.26200.7392"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2022_23h2:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E9CE4A36-DA42-40CC-8724-E30A22CA84B6",
"versionEndExcluding": "10.0.25398.2025"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "35BBEADA-D039-479B-A1BA-B2A7E37235BE",
"versionEndExcluding": "10.0.26100.7392"
}
],
"operator": "OR"
}
]
}
]