CVE-2025-53154
published 2025-08-12CVE-2025-53154: Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
Affected
59 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cjson_project | cjson | >= 0 < 1.7.15-1ubuntu0.1 | 1.7.15-1ubuntu0.1 |
| cjson_project | cjson | >= 0 < 1.7.18-3.1ubuntu0.1 | 1.7.18-3.1ubuntu0.1 |
| cjson_project | cjson | >= 0 < 1.7.10-1.1ubuntu0.1~esm1 | 1.7.10-1.1ubuntu0.1~esm1 |
| cjson_project | cjson | >= 0 < 1.7.17-1ubuntu0.1~esm3 | 1.7.17-1ubuntu0.1~esm3 |
| microsoft | windows_10_1507 | < 10.0.10240.21100 | 10.0.10240.21100 |
| microsoft | windows_10_1607 | < 10.0.14393.8330 | 10.0.14393.8330 |
| microsoft | windows_10_1809 | < 10.0.17763.7678 | 10.0.17763.7678 |
| microsoft | windows_10_21h2 | < 10.0.19044.6216 | 10.0.19044.6216 |
| microsoft | windows_10_22h2 | < 10.0.19045.6216 | 10.0.19045.6216 |
| microsoft | windows_10_version_1507 | >= 10.0.10240.0 < 10.0.10240.21100 | 10.0.10240.21100 |
| microsoft | windows_10_version_1607 | >= 10.0.14393.0 < 10.0.14393.8330 | 10.0.14393.8330 |
| microsoft | windows_10_version_1809 | >= 10.0.17763.0 < 10.0.17763.7678 | 10.0.17763.7678 |
| microsoft | windows_10_version_21h2 | >= 10.0.19044.0 < 10.0.19044.6216 | 10.0.19044.6216 |
| microsoft | windows_10_version_22h2 | >= 10.0.19045.0 < 10.0.19045.6216 | 10.0.19045.6216 |
| microsoft | windows_11_22h2 | < 10.0.22621.5768 | 10.0.22621.5768 |
| microsoft | windows_11_23h2 | < 10.0.22631.5768 | 10.0.22631.5768 |
| microsoft | windows_11_24h2 | < 10.0.26100.4851 | 10.0.26100.4851 |
| microsoft | windows_11_version_22h2 | >= 10.0.22621.0 < 10.0.22621.5768 | 10.0.22621.5768 |
| microsoft | windows_11_version_22h3 | >= 10.0.22631.0 < 10.0.22631.5768 | 10.0.22631.5768 |
| microsoft | windows_11_version_23h2 | >= 10.0.22631.0 < 10.0.22631.5768 | 10.0.22631.5768 |
| microsoft | windows_11_version_24h2 | >= 10.0.26100.0 < 10.0.26100.4946 | 10.0.26100.4946 |
| microsoft | windows_server_2008 | — | — |
| microsoft | windows_server_2008_r2_service_pack_1 | >= 6.1.7601.0 < 6.1.7601.27872 | 6.1.7601.27872 |
| microsoft | windows_server_2008_service_pack_2 | >= 6.0.6003.0 < 6.0.6003.23471 | 6.0.6003.23471 |
| microsoft | windows_server_2012 | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv2.9LOW