CVE-2025-27484
7.5
CriticalCVE-2025-27484
•
secure@microsoft.com
•
Awaiting Analysis
Description
Sensitive data storage in improperly locked memory in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges over a network.
Exploits
No known exploits found for this CVE.
Search Exploit-DBReferences
secure@microsoft.com
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27484