cve-2025-53136

CVE-2025-53136 is a Windows kernel information disclosure vulnerability that affects Windows 11 and Windows Server 2022 24H2 builds. The flaw originates from changes to the kernel function RtlSidHashInitialize, which was modified to fix an earlier October 2024 issue. These changes temporarily write a sensitive kernel pointer into a userland buffer, creating a timing window that local attackers can exploit with race logic. This allows attackers to defeat Kernel Address Space Layout Randomization (KASLR) and potentially chain the bug into full local privilege escalation. Microsoft's Security Update Guide lists CVE-2025-53136 as a local information disclosure vulnerability that does not permit remote code execution on its own but can be a stepping stone in multi-stage attacks. Administrators are advised to install vendor updates to remediate the issue.