You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve 2025 58738
About this tag
CVE-2025-58738 is a security vulnerability in Windows Inbox COM Objects (Global Memory) that can lead to remote code execution (RCE) when combined with local user interaction or a prior foothold. Microsoft addressed this flaw in the October 2025 security rollups. Administrators should reconcile CVE-to-KB mappings in the Microsoft Security Update Guide and apply the updates promptly. The vulnerability involves legacy COM components that expose shared or global memory, making them susceptible to exploitation in realistic attack chains.
Microsoft has confirmed a security flaw tracked as CVE-2025-58738 in the Inbox COM Objects (Global Memory) family that can lead to remote code execution in realistic attack chains when combined with local user interaction or a prior foothold; administrators are urged to reconcile CVE→KB mappings...