KEV · Actively exploited

CVE-2025-24983

HIGH 7.0 KEV Published on 2025-03-11

Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability

EPSS 1.80% above median percentile 83.1%

CISA Known Exploited Vulnerability

Added to KEV: 2025-03-11
Remediation deadline: 2025-04-01
Required action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Ransomware: No

This CVE is resolved by the following OS security releases. Update the OS to at least the listed version.