CVE-2025-24067

High

Published: 11 March 2025

Published

11 March 2025

Modified

03 July 2025

KEV Added

—

Patch

—

CVSS Score 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score 0.0014 33.6th percentile

Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Description

Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.

Security Summary

CVE-2025-24067 is a heap-based buffer overflow vulnerability, classified under CWE-122, affecting the Microsoft Streaming Service. Published on 2025-03-11T17:16:29.477, it carries a CVSS v3.1 base score of 7.8 (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H). The issue enables an authorized attacker to elevate privileges locally through improper handling of heap memory.

A local attacker possessing low privileges (PR:L) can exploit this vulnerability with low attack complexity and no user interaction. Exploitation requires only local access (AV:L) and results in high impacts across confidentiality, integrity, and availability, allowing the attacker to elevate privileges and potentially gain broader system control.

Microsoft provides mitigation guidance in its Security Update Guide at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24067.

Details

CWE(s): CWE-122

Affected Products

microsoft

windows 10 1507

≤ 10.0.10240.20947

microsoft

windows 10 1607

≤ 10.0.14393.7876 · ≤ 10.0.14393.7876

microsoft

windows 10 1809

≤ 10.0.17763.7009 · ≤ 10.0.17763.7009

microsoft

windows 10 21h2

≤ 10.0.19044.5608

microsoft

windows 10 22h2

≤ 10.0.19045.5608

microsoft

windows 11 22h2

≤ 10.0.22621.5039

microsoft

windows 11 23h2

≤ 10.0.22631.5039

microsoft

windows 11 24h2

≤ 10.0.26100.3403 · 10.0.26100.3403 — 10.0.26100.3476

microsoft

windows server 2016

≤ 10.0.14393.7876

microsoft

windows server 2019

≤ 10.0.17763.7009

+3 more product configuration(s) — see NVD for full list

MITRE ATT&CK Enterprise Techniques

T1068 Exploitation for Privilege Escalation Privilege Escalation

Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.

attack.mitre.org →

Why these techniques?

Heap-based buffer overflow in Microsoft Streaming Service directly enables local privilege escalation by allowing low-privileged attackers to execute arbitrary code and gain elevated system privileges.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24067
Vendor Advisory · secure@microsoft.com