Information Disclosure Vulnerability in Windows NT OS Kernel by Microsoft
CVE-2025-53136
Key Information:
- Vendor
Microsoft
- Status
- Vendor
- CVE Published:
- 12 August 2025
Badges
What is CVE-2025-53136?
CVE-2025-53136 is an information disclosure vulnerability within the Windows NT OS Kernel developed by Microsoft. The Windows NT Operating System serves as a foundation for various Windows platforms, providing crucial system-level services and features necessary for the operation of both personal and enterprise computing environments. The vulnerability emerges from a flaw that allows authorized attackers to disclose sensitive information to unauthorized parties locally. Such exposure can compromise the confidentiality of critical data within an organization's infrastructure, leading to further security risks if sensitive data falls into the wrong hands. As this risk relates directly to the core operating system, it can have far-reaching implications across various applications and services built on top of it.
Potential impact of CVE-2025-53136
-
Data Breach Risk: The vulnerability can lead to the unauthorized disclosure of sensitive information, increasing the risk of data breaches that can have legal and regulatory ramifications.
-
Compromise of System Integrity: By exposing critical information, attackers could potentially exploit this vulnerability to engineer further attacks on the system, undermining the overall integrity and security of the affected environment.
-
Impact on Confidential Operations: Organizations relying on Windows NT for secure processing may find their confidential operations jeopardized, as attackers can gain insights into protected data, leading to a loss of trust and reputation.
Affected Version(s)
Windows 10 Version 1507 32-bit Systems 10.0.10240.0 < 10.0.10240.21100
Windows 10 Version 1607 32-bit Systems 10.0.14393.0 < 10.0.14393.8330
Windows 10 Version 1809 32-bit Systems 10.0.17763.0 < 10.0.17763.7678