CNNVD-202509-1337 Information

Sep 09, 2025 cve

CNNVD ID

CNNVD-202509-1337

CVE-2025-54091

  • CNNVD Published: 2025-09-09

Description (Chinese)

Microsoft Hyper-V是美国微软(Microsoft)公司的一个应用程序。一种系统管理程序虚拟化技术,能够实现桌面虚拟化。 Microsoft Hyper-V存在输入验证错误漏洞。攻击者利用该漏洞可以提升权限。以下产品和版本受到影响:Windows Server 2022, 23H2 Edition (Server Core installation),Windows 11 Version 24H2 for ARM64-based Systems,Windows 11 Version 24H2 for x64-based Systems,Windows Server 2025,Windows 10 for x64-based Systems,Windows 10 Version 1607 for x64-based Systems,Windows Server 2016,Windows Server 2016 (Server Core installation),Windows Server 2012,Windows Server 2012 (Server Core installation),Windows Server 2012 R2,Windows Server 2012 R2 (Server Core installation),Windows 11 Version 22H2 for x64-based Systems,Windows 10 Version 22H2 for x64-based Systems,Windows Server 2025 (Server Core installation),Windows 11 Version 23H2 for ARM64-based Systems,Windows 11 Version 23H2 for x64-based Systems,Windows 10 Version 1809 for x64-based Systems,Windows Server 2019,Windows Server 2019 (Server Core installation),Windows Server 2022,Windows Server 2022 (Server Core installation),Windows 10 Version 21H2 for x64-based Systems,Windows 11 Version 22H2 for ARM64-based Systems。

Description (English)

Microsoft Hyper-V is an application of Microsoft United States. A system management process virtualization technology that enables desktop virtualization. Microsoft Hyper-V has an input authentication bug. The attackers use this loophole to enhance their authority. The following products and versions are affected: Windows Service 2022, 23H2 Education (Wow Service, Aow Service, 11 Services Service 24H2 for ARM 64-basted Systems, Windows 24H2 for x 64-basted Systems, Windows Service 2025, Windows 10 for x 64-based Systems, Windows 1007 forx 64-basystems, Wow Services 20-years 20-years and 20-years

Hazard Level

Medium

Vulnerability Type

输入验证错误

Affected Vendor

Mida Solutions

Published

2025-09-09

Last Modified

2026-02-24

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-54091

Patch

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-54091

Share on: