CVE-2025-29839Out-of-bounds Read in Microsoft Windows 10 Version 1507

CWE-125Out-of-bounds Read5 documents5 sources
Severity
4.0MEDIUMNVD
EPSS
1.0%
top 22.91%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
27
Microsoft Windows 10 Version 1507Microsoft Windows 10 Version 1607Microsoft Windows 10 Version 1809+24 more
Timeline
PublishedMay 13

Description

Out-of-bounds read in Windows File Server allows an unauthorized attacker to disclose information locally.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 2.5 | Impact: 1.4

Affected Packages26 packages

CVEListV5microsoft/windows_server_20126.2.9200.06.2.9200.25475
CVEListV5microsoft/windows_server_201610.0.14393.010.0.14393.8066
CVEListV5microsoft/windows_server_201910.0.17763.010.0.17763.7314
CVEListV5microsoft/windows_server_202210.0.20348.010.0.20348.3692
CVEListV5microsoft/windows_server_202510.0.26100.010.0.26100.4061

🔴Vulnerability Details

2
GHSA
GHSA-296p-gcc5-5329: Out-of-bounds read in Windows File Server allows an unauthorized attacker to disclose information locally2025-05-13
CVEList
Windows Multiple UNC Provider Driver Information Disclosure Vulnerability2025-05-13

📋Vendor Advisories

1
Microsoft
Windows Multiple UNC Provider Driver Information Disclosure Vulnerability2025-05-13

🕵️Threat Intelligence

1
Bleepingcomputer
Microsoft May 2025 Patch Tuesday fixes 5 exploited zero-days, 72 flaws2025-05-13
CVE-2025-29839 — Out-of-bounds Read in Microsoft | cvebase