Description
Sensitive data storage in improperly locked memory in Windows upnphost.dll allows an authorized attacker to elevate privileges locally.
Related CPE's
o
microsoft
windows_10_1507
2
o
microsoft
windows_10_1607
2
o
microsoft
windows_10_1809
2
Vulnerable
Vulnerable
Vulnerable
Vulnerable
Vulnerable
o
microsoft
windows_server_2008
3
o
microsoft
windows_server_2012
2
Vulnerable
Vulnerable
Vulnerable
Vulnerable
Vulnerable
CVSS impact metrics
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
7 · High
Information
Source identifier
Vulnerability status
Analyzed
Published
2025-04-08T16:15:49.670Z
11 months agoLast modified
2025-07-09T14:38:34.367Z
8 months ago