CVE-2025-29971

Out-of-bounds read in Web Threat Defense (WTD.sys) allows an unauthorized attacker to deny service over a network.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29971	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:microsoft:windows_11_22h2:::::::arm64:*
	cpe:2.3:o:microsoft:windows_11_22h2:::::::x64:*
	cpe:2.3:o:microsoft:windows_11_23h2:::::::arm64:*
	cpe:2.3:o:microsoft:windows_11_23h2:::::::x64:*
	cpe:2.3:o:microsoft:windows_11_24h2:::::::arm64:*
	cpe:2.3:o:microsoft:windows_11_24h2:::::::x64:*

History

19 May 2025, 14:20

Type	Values Removed	Values Added
References	~~() https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29971 -~~	() https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29971 - Vendor Advisory
CPE		cpe:2.3:o:microsoft:windows_11_24h2:::::::arm64:* cpe:2.3:o:microsoft:windows_11_22h2:::::::x64:* cpe:2.3:o:microsoft:windows_11_23h2:::::::x64:* cpe:2.3:o:microsoft:windows_11_23h2:::::::arm64:* cpe:2.3:o:microsoft:windows_11_22h2:::::::arm64:* cpe:2.3:o:microsoft:windows_11_24h2:::::::x64:*
Summary		(es) La lectura fuera de los límites en Web Threat Defense (WTD.sys) permite que un atacante no autorizado deniegue el servicio en una red.
First Time		Microsoft Microsoft windows 11 22h2 Microsoft windows 11 23h2 Microsoft windows 11 24h2

13 May 2025, 17:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-05-13 17:15

Updated : 2025-05-19 14:20

NVD link : CVE-2025-29971

Mitre link : CVE-2025-29971

CVE.ORG link : CVE-2025-29971

JSON object : View

Products Affected

microsoft

windows_11_23h2
windows_11_22h2
windows_11_24h2

CWE

CWE-125

Out-of-bounds Read

{"id": "CVE-2025-29971", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "secure@microsoft.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2025-05-13T17:15:57.983", "references": [{"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29971", "tags": ["Vendor Advisory"], "source": "secure@microsoft.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "secure@microsoft.com", "description": [{"lang": "en", "value": "CWE-125"}]}], "descriptions": [{"lang": "en", "value": "Out-of-bounds read in Web Threat Defense (WTD.sys) allows an unauthorized attacker to deny service over a network."}, {"lang": "es", "value": "La lectura fuera de los l\u00edmites en Web Threat Defense (WTD.sys) permite que un atacante no autorizado deniegue el servicio en una red."}], "lastModified": "2025-05-19T14:20:41.730", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:arm64:*", "vulnerable": true, "matchCriteriaId": "CA321DC2-D196-4C81-87E8-B1A240A75CB8", "versionEndExcluding": "10.0.22621.5335"}, {"criteria": "cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "CA476FFD-741C-4534-AA84-BA3511AE1413", "versionEndExcluding": "10.0.22621.5335"}, {"criteria": "cpe:2.3:o:microsoft:windows_11_23h2:*:*:*:*:*:*:arm64:*", "vulnerable": true, "matchCriteriaId": "28D1BDF2-8DF7-48DF-BBF7-E5DE3EF243D1", "versionEndExcluding": "10.0.22631.5335"}, {"criteria": "cpe:2.3:o:microsoft:windows_11_23h2:*:*:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "3F66E394-51B6-48B2-AFF6-A45007E654AD", "versionEndExcluding": "10.0.22631.5335"}, {"criteria": "cpe:2.3:o:microsoft:windows_11_24h2:*:*:*:*:*:*:arm64:*", "vulnerable": true, "matchCriteriaId": "4448191F-2152-4E7F-8D4A-4EE7ED6657D6", "versionEndExcluding": "10.0.26100.4061"}, {"criteria": "cpe:2.3:o:microsoft:windows_11_24h2:*:*:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "7CE8E58A-59AA-4649-8C0F-0DB11A1D1936", "versionEndExcluding": "10.0.26100.4061"}], "operator": "OR"}]}], "sourceIdentifier": "secure@microsoft.com"}