Vulnerability · NVD
CVE-2025-48821
HIGH 7.1
Windows Universal Plug and Play (UPnP) Device Host Elevation of Privilege Vulnerability
EPSS
0.29%
above median
percentile 52.9%
OS versions that fix this CVE
This CVE is resolved by the following OS security releases. Update the OS to at least the listed version.
- Windows Fixed in Windows Server 2025 (Server Core installation) 10.0.26100.4652 Windows Server 2025 10.0.26100.4652 Windows Server 2022 (Server Core installation) 10.0.20348.3932 Windows Server 2022 10.0.25398.1732 Windows Server 2019 (Server Core installation) 10.0.17763.7558 Windows Server 2019 10.0.17763.7558 Windows Server 2016 (Server Core installation) 10.0.14393.8246 Windows Server 2016 10.0.14393.8246 Windows 11 24H2 · 2024-H2 10.0.26100.4652 Windows 11 23H2 · 2023-H2 10.0.22631.5624 Windows 11 22H2 · 2022-H2 10.0.22621.5624 Windows 10 22H2 · 2022-H2 10.0.19045.6093 Windows 10 21H2 · 2021-H2 10.0.19044.6093 Windows 10 1809 · 2018-09 10.0.17763.7558 Windows 10 1607 · 2016-07 10.0.14393.8246