CVE-2025-26639: Integer overflow or wraparound in Windows USB Print Driver allows an authorized attacker to elevate privileges locally.

PriorityP342high7.8CVSS 3.1

AVLACLPRLUINSUCHIHAH

EPSS

0.49%

38.1th percentile

Integer overflow or wraparound in Windows USB Print Driver allows an authorized attacker to elevate privileges locally.

Affected

31 ranges· showing 25

Vendor	Product	Version range	Fixed in
microsoft	windows_10_21h2	< 10.0.19044.5737	10.0.19044.5737
microsoft	windows_10_22h2	< 10.0.19045.5737	10.0.19045.5737
microsoft	windows_10_version_21h2	>= 10.0.19044.0 < 10.0.19044.5737	10.0.19044.5737
microsoft	windows_10_version_22h2	>= 10.0.19045.0 < 10.0.19045.5737	10.0.19045.5737
microsoft	windows_11_22h2	< 10.0.22621.5189	10.0.22621.5189
microsoft	windows_11_23h2	< 10.0.22631.5189	10.0.22631.5189
microsoft	windows_11_24h2	< 10.0.26100.3775	10.0.26100.3775
microsoft	windows_11_version_22h2	>= 10.0.22621.0 < 10.0.22621.5189	10.0.22621.5189
microsoft	windows_11_version_22h3	>= 10.0.22631.0 < 10.0.22631.5189	10.0.22631.5189
microsoft	windows_11_version_23h2	>= 10.0.22631.0 < 10.0.22631.5189	10.0.22631.5189
microsoft	windows_11_version_24h2	>= 10.0.26100.0 < 10.0.26100.3775	10.0.26100.3775
microsoft	windows_server_2022	< 10.0.20348.3453	10.0.20348.3453
microsoft	windows_server_2022	>= 10.0.20348.0 < 10.0.20348.3453	10.0.20348.3453
microsoft	windows_server_2022_23h2	< 10.0.25398.1551	10.0.25398.1551
microsoft	windows_server_2025	< 10.0.26100.3775	10.0.26100.3775
microsoft	windows_server_2025	>= 10.0.26100.0 < 10.0.26100.3775	10.0.26100.3775
msrc	windows_10_version_21h2_for_32-bit_systems	—	—
msrc	windows_10_version_21h2_for_arm64-based_systems	—	—
msrc	windows_10_version_21h2_for_x64-based_systems	—	—
msrc	windows_10_version_22h2_for_32-bit_systems	—	—
msrc	windows_10_version_22h2_for_arm64-based_systems	—	—
msrc	windows_10_version_22h2_for_x64-based_systems	—	—
msrc	windows_11_version_22h2_for_arm64-based_systems	—	—
msrc	windows_11_version_22h2_for_x64-based_systems	—	—
msrc	windows_11_version_23h2_for_arm64-based_systems	—	—

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

vendor_msrc7.8HIGH

Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.