How severe is CVE-2025-27475?

This vulnerability has a severity rating of HIGH with a CVSS score of 7 out of 10.

What type of vulnerability is CVE-2025-27475?

This is classified as CWE-591, which is a common weakness in software security.

CVE-2025-27475

HIGH Year: 2025

CVSS v3 Score

7.0

High

Weakness Type

CWE-591

View all →

Vulnerability Description

Sensitive data storage in improperly locked memory in Windows Update Stack allows an authorized attacker to elevate privileges locally.

CVE-2023-21739

HIGH

CVSS:7.0(High)

Windows Bluetooth Driver Elevation of Privilege Vulnerability

CWE-5912023

CVE-2023-21771

HIGH

CVSS:7.0(High)

Windows Local Session Manager (LSM) Elevation of Privilege Vulnerability

CWE-5912023

CVE-2023-23393

HIGH

CVSS:7.0(High)

Windows BrokerInfrastructure Service Elevation of Privilege Vulnerability

CWE-5912023

CVE-2023-24899

HIGH

CVSS:7.0(High)

Windows Graphics Component Elevation of Privilege Vulnerability

CWE-5912023

CVE-2023-28229

HIGH

CVSS:7.0(High)

Windows CNG Key Isolation Service Elevation of Privilege Vulnerability

CWE-5912023

CVE-2023-28273

HIGH

CVSS:7.0(High)

Windows Clip Service Elevation of Privilege Vulnerability

CWE-5912023

CVE-2025-27475

Vulnerability Description

Related Vulnerabilities

CVE-2023-21739

CVE-2023-21771

CVE-2023-23393

CVE-2023-24899

CVE-2023-28229

CVE-2023-28273