CNNVD-202509-1294 Information
CNNVD ID
CNNVD-202509-1294
Related CVE
- CNNVD Published: 2025-09-09
Description (Chinese)
Microsoft Win32k是美国微软(Microsoft)公司的一个用于Windows多用户管理的系统文件。 Microsoft Win32k存在竞争条件问题漏洞。攻击者利用该漏洞可以远程执行代码。以下产品和版本受到影响:Windows 11 Version 24H2 for x64-based Systems,Windows Server 2025,Windows 10 Version 22H2 for x64-based Systems,Windows 10 Version 22H2 for ARM64-based Systems,Windows 10 Version 22H2 for 32-bit Systems,Windows Server 2025 (Server Core installation),Windows 11 Version 23H2 for ARM64-based Systems,Windows 11 Version 23H2 for x64-based Systems,Windows Server 2022, 23H2 Edition (Server Core installation),Windows 11 Version 24H2 for ARM64-based Systems,Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1809 for x64-based Systems,Windows Server 2019,Windows Server 2019 (Server Core installation),Windows Server 2022,Windows Server 2022 (Server Core installation),Windows 10 Version 21H2 for 32-bit Systems,Windows 10 Version 21H2 for ARM64-based Systems,Windows 10 Version 21H2 for x64-based Systems,Windows 11 Version 22H2 for ARM64-based Systems,Windows 11 Version 22H2 for x64-based Systems。
Description (English)
Microsoft Win32k is a system file for Windows multi-user management by Microsoft United States. Microsoft Win32k has a gap in competition conditions. The attackers used the loophole to implement the code remotely. The following products and versions are affected: Windows 11 Services for 24 years, Windows Services 2025, Windows 22nd for 64-based Systems, Windows 22H2 for ARM 64-based Systems, Windows 10 Services 22H2 for 32-bit Systems, Windows Service 2025 (Wavers 28-years 22-years 22-years 20-years 20-years 20-years 20-years, 20-years 20-years 20-years 20-years 20-years 20-years 20-years
Hazard Level
Medium
Vulnerability Type
竞争条件问题
Affected Vendor
微软
Published
2025-09-09
Last Modified
2026-02-24
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-54919
Patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-54919
Share on: