CVE-2025-48002

Summary

Integer overflow or wraparound in Windows Hyper-V allows an authorized attacker to disclose information over an adjacent network.

Affected Software

VendorProductVersion RangeStatus
MicrosoftWindows 11 Version 24H210.0.26100.0 < 10.0.26100.4652affected
MicrosoftWindows Server 202510.0.26100.0 < 10.0.26100.4652affected
MicrosoftWindows Server 2025 (Server Core installation)10.0.26100.0 < 10.0.26100.4652affected

Weaknesses

  • CWE-190: CWE-190: Integer Overflow or Wraparound
  • CWE-125: CWE-125: Out-of-bounds Read

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References