cve 2025 62220

CVE-2025-62220 is a high-severity heap-based buffer overflow vulnerability in the Windows Subsystem for Linux GUI (WSLg), disclosed by Microsoft on November 11, 2025. With a CVSS v3.1 base score of 8.8, the flaw allows code execution via crafted inputs, making it a critical patching priority for administrators running WSLg or exposing the WSL GUI stack. Discussions on WindowsForum.com emphasize the need for immediate vendor updates and rapid mirroring by major trackers to mitigate exploitation risks. This tag covers technical details, patching guidance, and security implications for enterprise IT environments using WSLg.