cve-2025-59211

About this tag
CVE-2025-59211 is a medium-severity information disclosure vulnerability in the Windows Push Notification Core component. Microsoft's advisory describes it as a local, low-privilege flaw that allows an authorized attacker to obtain sensitive data from the system. The vulnerability carries a CVSS 3.1 score of 5.5, with high confidentiality impact. Discussions on WindowsForum.com cover the technical details of CVE-2025-59211, including the affected component, attack vector, and mitigation steps. Users share insights on how this local information disclosure could be exploited and discuss the importance of applying security updates to protect Windows systems from potential data leaks.
  1. CVE-2025-59211: Local Information Disclosure in Windows Push Notification Core

    Microsoft’s advisory for CVE-2025-59211 documents an information disclosure flaw in the Windows Push Notification Core that allows a low‑privilege, authorized local actor to obtain sensitive data from the system — a vulnerability Microsoft classifies as local, low‑privilege, high‑confidentiality...