Description
Buffer over-read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6Attack Vector: Local
Complexity: Low
Privileges: Low
User Interaction: None
Scope: Unchanged
Confidentiality: High
Integrity: None
Availability: None
Affected Packages27 packages
🔴Vulnerability Details
2CVEListWindows Storage Management Provider Information Disclosure Vulnerability↗2025-10-14 GHSAGHSA-jhf3-vv63-c68v: Buffer over-read in Windows Storage Management Provider allows an authorized attacker to disclose information locally↗2025-10-14 📋Vendor Advisories
1MicrosoftWindows Storage Management Provider Information Disclosure Vulnerability↗2025-10-14