CVE-2025-53149

CVE-2025-53149 describes a heap-based buffer overflow in the Kernel Streaming WOW Thunk Service Driver that an authorized, locally authenticated attacker could abuse to achieve local privilege elevation. The CVE is tracked with CVSS 3.1: Local, Low attack complexity, Low privileges required, no u...

PT-2024-5695 · Microsoft · Kernel Streaming Wow Thunk Service Driver +1

Name of the Vulnerable Software and Affected Versions: Windows Kernel Streaming WOW Thunk Service Driver versions prior to the fixed version Description: The issue is related to a buffer overflow in the dynamic memory of the Kernel Streaming WOW Thunk Service Driver, which can be exploited to...

The vulnerability of the Kernel Streaming WOW Thunk Service Driver (Drivers\ksthunk.sys) on Windows operating systems, which allows a hacker to escalate their privileges.

The vulnerability of the Kernel Streaming WOW Thunk Service Driver Drivers\ksthunk.sys on Windows operating systems is related to insufficient input validation. Exploiting this vulnerability can allow an attacker to gain increased privileges...

CVE-2024-38052 Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

...