vulnerability

Microsoft Windows: CVE-2025-53134: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Try Surface Command
Back to search
Severity
7
CVSS
(AV:L/AC:M/Au:S/C:C/I:C/A:C)
Published
Aug 12, 2025
Added
Aug 12, 2025
Modified
Oct 14, 2025

Description

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

Solutions

microsoft-windows-windows_10-1507-kb5063889microsoft-windows-windows_10-1607-kb5063871microsoft-windows-windows_10-1809-kb5063877microsoft-windows-windows_10-21h2-kb5063709microsoft-windows-windows_10-22h2-kb5063709microsoft-windows-windows_11-22h2-kb5063875microsoft-windows-windows_11-23h2-kb5063875microsoft-windows-windows_11-24h2-kb5063878microsoft-windows-windows_server_2012-kb5063906microsoft-windows-windows_server_2012_r2-kb5063950microsoft-windows-windows_server_2016-1607-kb5063871microsoft-windows-windows_server_2019-1809-kb5063877microsoft-windows-windows_server_2022-21h2-kb5063880microsoft-windows-windows_server_2022-22h2-kb5063880microsoft-windows-windows_server_2022-23h2-kb5063899microsoft-windows-windows_server_2025-24h2-kb5063878

References

    Title
    NEW

    Explore Exposure Command

    Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

    Try it today