Windows Kernel Information Disclosure Vulnerability
Improper input validation in Windows Kernel allows an unauthorized attacker to disclose information locally.
MSRC compact vulnerability detail
CVE-2025-55679 · Windows Kernel Information Disclosure Vulnerability
Improper input validation in Windows Kernel allows an unauthorized attacker to disclose information locally.
Signals
Windows Kernel
Information Disclosure
Exploited: No
Publicly disclosed: No
Exploitability: Exploitation Unlikely
CWE
Patch Diff
Loading module diff metadata...
Resolved binary override
Use this when the MSRC module name cannot be mapped automatically or the resolved binary looks wrong.
Description
Improper input validation in Windows Kernel allows an unauthorized attacker to disclose information locally.
FAQ / Articles
Windows Kernel Information Disclosure Vulnerability
Improper input validation in Windows Kernel allows an unauthorized attacker to disclose information locally.
FAQ
According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability? Successful exploitation of this vulnerability requires an attacker to prepare the target environment to improve exploit reliability.
FAQ
What type of information could be disclosed by this vulnerability? Exploiting this vulnerability could allow the disclosure of certain memory address within kernel space. Knowing the exact location of kernel memory could be potentially leveraged by an attacker for other malicious activities.