Heap-Based Buffer Overflow in Windows Win32K by Microsoft
CVE-2025-49727
7HIGH
Key Information:
- Vendor
Microsoft
- Status
- Vendor
- CVE Published:
- 8 July 2025
What is CVE-2025-49727?
A heap-based buffer overflow vulnerability in Microsoft Windows Win32K component permits an authorized attacker to exploit this weakness to elevate privileges on the affected system. By carefully crafting requests, an attacker could gain higher access rights, which could lead to unauthorized actions or system control.
Affected Version(s)
Windows 10 Version 1507 32-bit Systems 10.0.10240.0 < 10.0.10240.21073
Windows 10 Version 1607 32-bit Systems 10.0.14393.0 < 10.0.14393.8246
Windows 10 Version 1809 32-bit Systems 10.0.17763.0 < 10.0.17763.7558