CVE-2025-29963
EUVD-2025-1441513.05.2025, 17:15
Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| microsoft | windows_10_1809 | 𝑥 < 10.0.17763.7314 |
| microsoft | windows_10_1809 | 𝑥 < 10.0.17763.7314 |
| microsoft | windows_10_21h2 | 𝑥 < 10.0.19044.5854 |
| microsoft | windows_10_21h2 | 𝑥 < 10.0.19044.5854 |
| microsoft | windows_10_21h2 | 𝑥 < 10.0.19044.5854 |
| microsoft | windows_10_22h2 | 𝑥 < 10.0.19045.5854 |
| microsoft | windows_10_22h2 | 𝑥 < 10.0.19045.5854 |
| microsoft | windows_10_22h2 | 𝑥 < 10.0.19045.5854 |
| microsoft | windows_11_22h2 | 𝑥 < 10.0.22621.5335 |
| microsoft | windows_11_22h2 | 𝑥 < 10.0.22621.5335 |
| microsoft | windows_11_23h2 | 𝑥 < 10.0.22631.5335 |
| microsoft | windows_11_23h2 | 𝑥 < 10.0.22631.5335 |
| microsoft | windows_11_24h2 | 𝑥 < 10.0.26100.4061 |
| microsoft | windows_11_24h2 | 𝑥 < 10.0.26100.4061 |
| microsoft | windows_server_2019 | 𝑥 < 10.0.17763.7314 |
| microsoft | windows_server_2022 | 𝑥 < 10.0.20348.3692 |
| microsoft | windows_server_2022_23h2 | 𝑥 < 10.0.25398.1611 |
| microsoft | windows_server_2025 | 𝑥 < 10.0.26100.4061 |
𝑥
= Vulnerable software versions
Windows Releases
Platform | Version | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Windows 10 |
| ||||||||
| Windows 11 |
| ||||||||
| Windows Server 2019 |
| ||||||||
| Windows Server 2022 |
| ||||||||
| Windows Server 2025 |
|
Common Weakness Enumeration
- CWE-122 - Heap-based Buffer OverflowA heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().
- CWE-787 - Out-of-bounds WriteThe software writes data past the end, or before the beginning, of the intended buffer.