You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve-2025-53141
About this tag
CVE-2025-53141 is a high-severity local elevation-of-privilege vulnerability in the Windows Ancillary Function Driver for WinSock (AFD.sys). A null pointer dereference in AFD.sys can be triggered by a locally authenticated attacker to elevate privileges to SYSTEM. This vulnerability affects Windows hosts and poses a significant security risk for enterprise IT environments. Discussions on WindowsForum.com cover the technical details of the flaw, its impact on system security, and mitigation strategies. Administrators are advised to apply Microsoft's security updates promptly to protect against potential exploitation.
Microsoft’s advisory confirms that a null pointer dereference in the Windows Ancillary Function Driver for WinSock (AFD.sys) can be triggered by a locally authorized attacker to elevate privileges to SYSTEM, creating a high-impact local elevation-of-privilege (EoP) risk for affected Windows...