CNNVD-202509-1344 Information
CNNVD ID
CNNVD-202509-1344
Related CVE
- CNNVD Published: 2025-09-09
Description (Chinese)
Microsoft Windows Internet Information Services(IIS)是美国微软(Microsoft)公司的一款适用于Windows Server平台的Web服务器。 Microsoft Windows Internet Information Services(IIS)存在缓冲区错误漏洞。攻击者利用该漏洞导致系统拒绝服务。以下产品和版本受到影响:Windows Server 2022,Windows Server 2022 (Server Core installation),Windows 11 Version 22H2 for ARM64-based Systems,Windows 11 Version 22H2 for x64-based Systems,Windows Server 2025 (Server Core installation),Windows 11 Version 23H2 for ARM64-based Systems,Windows 11 Version 23H2 for x64-based Systems,Windows Server 2022, 23H2 Edition (Server Core installation),Windows 11 Version 24H2 for ARM64-based Systems,Windows 11 Version 24H2 for x64-based Systems,Windows Server 2025。
Description (English)
Microsoft Windows Internet Information Services (IIS) is a Web server for the Windows Server platform from Microsoft USA. Microsoft Windows Internet Information Services (IIS) has an error hole in the buffer zone. The attackers used the loophole to cause the system to refuse services. The following products and versions were affected: Windows Server 2022, Windows Server 2022 (Server Corporation), Windows 11 Version 22H2 for ARM 64-based Systems, Windows 11 Version 22H2 for x 64-based Systems, Windows Server 2022, Windows Server 2025 (Server Corporation), Windows 11 Version 23H2 for ARM 64-based Systems, Windows 11 Views 23H2 for X64-Systems, Windows Server 2022, 23H2 Ediment (Server Corporation), Windows 11 Version 24H64-based Systems, Windows 11 Views 1224 for World 2024
Hazard Level
Medium
Vulnerability Type
缓冲区错误
Affected Vendor
Mida Solutions
Published
2025-09-09
Last Modified
2026-02-24
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53805
Patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53805
Share on: