Race Condition Vulnerability in Data Sharing Service Client by Microsoft
CVE-2025-59200

7.7HIGH

Key Information:

Badges

💰 Ransomware👾 Exploit Exists📰 News Worthy

What is CVE-2025-59200?

A race condition vulnerability exists in the Data Sharing Service Client, which could allow an unauthorized attacker to perform local spoofing attacks. This weakness stems from improper synchronization when concurrent execution is attempted with shared resources, potentially compromising system integrity and user data.

Affected Version(s)

Windows 10 Version 1507 32-bit Systems 10.0.10240.0 < 10.0.10240.21161

Windows 10 Version 1607 32-bit Systems 10.0.14393.0 < 10.0.14393.8519

Windows 10 Version 1809 32-bit Systems 10.0.17763.0 < 10.0.17763.7919

News Articles

ThreatsDay: Cloud Bucket Hijacking, Windows LPE Chain, Global Fraud Bust + 17 More Stories

ThreatsDay Bulletin covers fraud arrests, supply-chain attacks, phishing, cloud hijacking, ransomware, Windows flaws, and AI-driven data exfiltration.

1 day ago

References

CVSS V3.1

Score:
7.7
Severity:
HIGH
Confidentiality:
Low
Integrity:
High
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • 💰

    Used in Ransomware

  • 👾

    Exploit known to exist

  • 📰

    First article discovered by The Hacker News

  • Vulnerability published

  • Vulnerability Reserved

.