CNNVD-202512-1153 Information

Dec 09, 2025 cve

CNNVD ID

CNNVD-202512-1153

CVE-2025-64673

  • CNNVD Published: 2025-12-09

Description (Chinese)

Microsoft Storvsp.sys Driver是美国微软(Microsoft)公司的一个虚拟存储总线驱动程序。主要用于 Hyper-V 虚拟化环境中的虚拟机与宿主机之间的虚拟存储通信。 Microsoft Storvsp.sys Driver存在访问控制错误漏洞。攻击者利用该漏洞可以提升权限。以下产品和版本受到影响:Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1809 for x64-based Systems,Windows Server 2019,Windows Server 2019 (Server Core installation),Windows Server 2022,Windows Server 2022 (Server Core installation),Windows 10 Version 21H2 for 32-bit Systems,Windows 10 Version 21H2 for ARM64-based Systems,Windows 10 Version 21H2 for x64-based Systems,Windows 10 Version 22H2 for x64-based Systems,Windows 10 Version 22H2 for ARM64-based Systems,Windows 10 Version 22H2 for 32-bit Systems,Windows Server 2025 (Server Core installation),Windows 11 Version 25H2 for ARM64-based Systems,Windows 11 Version 25H2 for x64-based Systems,Windows 11 Version 23H2 for ARM64-based Systems,Windows 11 Version 23H2 for x64-based Systems,Windows Server 2022, 23H2 Edition (Server Core installation),Windows 11 Version 24H2 for ARM64-based Systems,Windows 11 Version 24H2 for x64-based Systems,Windows Server 2025。

Description (English)

Microsoft Storvsp.sys Driver is a virtual storage bus driver for Microsoft (MSC) in the United States. Virtual storage communications between virtual machines and mainframes mainly for use in the Hyper-V virtual environment. Microsoft Storvsp.sys Driver has access control bugs. The attackers use this loophole to enhance their authority. The following products and versions are affected: Windows 10 Version 1809 for 32-bit Systems, Windows 10 Overseas 1809 for x64-based Systems, Windows Server 2019, Windows Services Server 2022, Windows Server 2022 (Stelver Corporation), Windows Service 10-West Service, Windows 21H2 for Service 22 H64-Sys, Windows 22-Sys2-Hys2-Shas2-Shas2

Hazard Level

Medium

Vulnerability Type

访问控制错误

Affected Vendor

微软

Published

2025-12-09

Last Modified

2026-02-24

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64673

Patch

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64673

Share on: