Information Disclosure Vulnerability in Windows Defender Firewall by Microsoft
CVE-2025-62468
Key Information:
- Vendor
Microsoft
- Status
- Vendor
- CVE Published:
- 9 December 2025
What is CVE-2025-62468?
CVE-2025-62468 is an information disclosure vulnerability affecting the Windows Defender Firewall service provided by Microsoft. This vulnerability arises due to an out-of-bounds read in the service, which could allow an authorized attacker to disclose sensitive information on affected systems. If exploited, this could undermine the security posture of an organization by revealing data that could be leveraged for further attacks, including unauthorized access or data exfiltration. Given the critical role of the Windows Defender Firewall in network security and protection against threats, this weakness could have significant implications for the confidentiality and integrity of the data within affected organizations.
Potential impact of CVE-2025-62468
-
Data Leakage: The vulnerability allows authorized attackers to access sensitive information that should otherwise be protected. This could lead to unauthorized data exposure, impacting the organization's confidentiality.
-
Increased Attack Surface: By disclosing critical information about system configurations or network structure, the vulnerability could provide attackers with insights that facilitate more advanced and targeted attacks, making it easier for them to exploit other weaknesses.
-
Reputation Damage: If exploited, this vulnerability could lead to significant incidents of data breach, causing reputational harm to the organization. Trust from customers, partners, and stakeholders may diminish due to perceived negligence in securing sensitive information.
Affected Version(s)
Windows 11 version 22H3 ARM64-based Systems 10.0.22631.0 < 10.0.22631.6345
Windows 11 Version 23H2 x64-based Systems 10.0.22631.0 < 10.0.22631.6345
Windows 11 Version 24H2 ARM64-based Systems 10.0.26100.0 < 10.0.26100.7462