CVE-2025-29829

Use of uninitialized resource in Windows Trusted Runtime Interface Driver allows an authorized attacker to disclose information locally.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
microsoftCNA
5.5 MEDIUM
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 29%
VendorProductVersion
microsoftwindows_10_1507
𝑥
< 10.0.10240.21014
microsoftwindows_10_1507
𝑥
< 10.0.10240.21014
microsoftwindows_10_1607
𝑥
< 10.0.14393.8066
microsoftwindows_10_1607
𝑥
< 10.0.14393.8066
microsoftwindows_10_1809
𝑥
< 10.0.17763.7314
microsoftwindows_10_1809
𝑥
< 10.0.17763.7314
microsoftwindows_10_21h2
𝑥
< 10.0.19044.5854
microsoftwindows_10_21h2
𝑥
< 10.0.19044.5854
microsoftwindows_10_21h2
𝑥
< 10.0.19044.5854
microsoftwindows_10_22h2
𝑥
< 10.0.19045.5854
microsoftwindows_10_22h2
𝑥
< 10.0.19045.5854
microsoftwindows_10_22h2
𝑥
< 10.0.19045.5854
microsoftwindows_11_22h2
𝑥
< 10.0.22621.5335
microsoftwindows_11_22h2
𝑥
< 10.0.22621.5335
microsoftwindows_11_23h2
𝑥
< 10.0.22631.5335
microsoftwindows_11_23h2
𝑥
< 10.0.22631.5335
microsoftwindows_11_24h2
𝑥
< 10.0.26100.4061
microsoftwindows_11_24h2
𝑥
< 10.0.26100.4061
microsoftwindows_server_2016
𝑥
< 10.0.14393.8066
microsoftwindows_server_2019
𝑥
< 10.0.17763.7314
microsoftwindows_server_2022
𝑥
< 10.0.20348.3692
microsoftwindows_server_2022_23h2
𝑥
< 10.0.25398.1611
microsoftwindows_server_2025
𝑥
< 10.0.26100.4061
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29829