cbcvebase.
CVE-2025-59515
published 2025-11-11

CVE-2025-59515: Use after free in Windows Broadcast DVR User Service allows an authorized attacker to elevate privileges locally.

high7CVSS 3.1
AVLACHPRLUINSUCHIHAH
Use after free in Windows Broadcast DVR User Service allows an authorized attacker to elevate privileges locally.

Affected

35 ranges· showing 25
VendorProductVersion rangeFixed in
microsoftwindows_10_1809< 10.0.17763.802710.0.17763.8027
microsoftwindows_10_21h2< 10.0.19044.657510.0.19044.6575
microsoftwindows_10_22h2< 10.0.19045.657510.0.19045.6575
microsoftwindows_10_version_1809>= 10.0.17763.0 < 10.0.17763.802710.0.17763.8027
microsoftwindows_10_version_21h2>= 10.0.19044.0 < 10.0.19044.657510.0.19044.6575
microsoftwindows_10_version_22h2>= 10.0.19045.0 < 10.0.19045.657510.0.19045.6575
microsoftwindows_11_23h2< 10.0.22631.619910.0.22631.6199
microsoftwindows_11_24h2< 10.0.26100.709210.0.26100.7092
microsoftwindows_11_25h2< 10.0.26200.709210.0.26200.7092
microsoftwindows_11_version_22h3>= 10.0.22631.0 < 10.0.22631.619910.0.22631.6199
microsoftwindows_11_version_23h2>= 10.0.22631.0 < 10.0.22631.619910.0.22631.6199
microsoftwindows_11_version_24h2>= 10.0.26100.0 < 10.0.26100.717110.0.26100.7171
microsoftwindows_11_version_25h2>= 10.0.26200.0 < 10.0.26200.717110.0.26200.7171
microsoftwindows_server_2019< 10.0.17763.802710.0.17763.8027
microsoftwindows_server_2019>= 10.0.17763.0 < 10.0.17763.802710.0.17763.8027
microsoftwindows_server_2022_23h2< 10.0.25398.196510.0.25398.1965
microsoftwindows_server_2025< 10.0.26100.709210.0.26100.7092
microsoftwindows_server_2025>= 10.0.26100.0 < 10.0.26100.717110.0.26100.7171
msrcwindows_10_version_1809_for_32-bit_systems
msrcwindows_10_version_1809_for_x64-based_systems
msrcwindows_10_version_21h2_for_32-bit_systems
msrcwindows_10_version_21h2_for_arm64-based_systems
msrcwindows_10_version_21h2_for_x64-based_systems
msrcwindows_10_version_22h2_for_32-bit_systems
msrcwindows_10_version_22h2_for_arm64-based_systems