cbcvebase.
CVE-2025-55339
published 2025-10-14

CVE-2025-55339: Out-of-bounds read in Windows NDIS allows an authorized attacker to elevate privileges locally.

high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
Out-of-bounds read in Windows NDIS allows an authorized attacker to elevate privileges locally.

Affected

25 ranges
VendorProductVersion rangeFixed in
microsoftwindows_11_22h2< 10.0.22621.606010.0.22621.6060
microsoftwindows_11_23h2< 10.0.22631.606010.0.22631.6060
microsoftwindows_11_24h2< 10.0.26100.689910.0.26100.6899
microsoftwindows_11_25h2< 10.0.26200.689910.0.26200.6899
microsoftwindows_11_version_22h2>= 10.0.22621.0 < 10.0.22621.606010.0.22621.6060
microsoftwindows_11_version_22h3>= 10.0.22631.0 < 10.0.22631.606010.0.22631.6060
microsoftwindows_11_version_23h2>= 10.0.22631.0 < 10.0.22631.606010.0.22631.6060
microsoftwindows_11_version_24h2>= 10.0.26100.0 < 10.0.26100.689910.0.26100.6899
microsoftwindows_11_version_25h2>= 10.0.26200.0 < 10.0.26200.689910.0.26200.6899
microsoftwindows_server_2022< 10.0.20348.429410.0.20348.4294
microsoftwindows_server_2022>= 10.0.20348.0 < 10.0.20348.429410.0.20348.4294
microsoftwindows_server_2022_23h2< 10.0.25398.191310.0.25398.1913
microsoftwindows_server_2025< 10.0.26100.689910.0.26100.6899
microsoftwindows_server_2025>= 10.0.26100.0 < 10.0.26100.689910.0.26100.6899
msrcwindows_11_version_22h2_for_arm64-based_systems
msrcwindows_11_version_22h2_for_x64-based_systems
msrcwindows_11_version_23h2_for_arm64-based_systems
msrcwindows_11_version_23h2_for_x64-based_systems
msrcwindows_11_version_24h2_for_arm64-based_systems
msrcwindows_11_version_24h2_for_x64-based_systems
msrcwindows_11_version_25h2_for_arm64-based_systems
msrcwindows_11_version_25h2_for_x64-based_systems
msrcwindows_server_2022
msrcwindows_server_2022_23h2_edition
msrcwindows_server_2025