Vulnerability · NVD
CVE-2025-21291
HIGH 8.8
Windows Direct Show Remote Code Execution Vulnerability
EPSS
1.65%
above median
percentile 82.4%
OS versions that fix this CVE
This CVE is resolved by the following OS security releases. Update the OS to at least the listed version.
- Windows Fixed in Windows Server 2022 (Server Core installation) 10.0.20348.3091 Windows Server 2022 10.0.25398.1369 Windows Server 2019 (Server Core installation) 10.0.17763.6775 Windows Server 2019 10.0.17763.6775 Windows 11 23H2 · 2023-H2 10.0.22631.4751 Windows 11 22H2 · 2022-H2 10.0.22621.4751 Windows 10 22H2 · 2022-H2 10.0.19045.5371 Windows 10 21H2 · 2021-H2 10.0.19044.5371 Windows 10 1809 · 2018-09 10.0.17763.6775