CVE-2025-60723 — Race Condition in Microsoft Windows 10 Version 1809

CWE-362 — Race Condition CWE-416 — Use After Free5 documents5 sources

Severity

6.3MEDIUMNVD

EPSS

0.0%

top 87.03%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows 10 Version 1809 Microsoft Windows 10 Version 21h2 Microsoft Windows 10 Version 22h2 +14 more

Timeline

PublishedNov 11

Description

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows DirectX allows an authorized attacker to deny service over a network.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:HExploitability: 1.8 | Impact: 4.0

Affected Packages17 packages

▶NVDmicrosoft/windows< 10.0.17763.8027+3

▶NVDmicrosoft/windows_10_1809< 10.0.17763.8027

▶NVDmicrosoft/windows_10_21h2< 10.0.19044.6575

▶NVDmicrosoft/windows_10_22h2< 10.0.19045.6575

▶NVDmicrosoft/windows_11_23h2< 10.0.22631.6199

🔴Vulnerability Details

CVEList

DirectX Graphics Kernel Denial of Service Vulnerability↗2025-11-11

▶

GHSA

GHSA-7fgw-x92p-mj94: Concurrent execution using shared resource with improper synchronization ('race condition') in Windows DirectX allows an authorized attacker to deny s↗2025-11-11

▶

📋Vendor Advisories

Microsoft

DirectX Graphics Kernel Denial of Service Vulnerability↗2025-11-11

▶

🕵️Threat Intelligence

Bleepingcomputer

Microsoft November 2025 Patch Tuesday fixes 1 zero-day, 63 flaws↗2025-11-11

▶