You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve 2025 64670
About this tag
CVE-2025-64670 is a medium-severity information disclosure vulnerability in the Windows DirectX component, specifically within the Microsoft Graphics Component. It allows an authenticated, low-privilege attacker to leak sensitive kernel or process memory over a network-reachable channel. Microsoft has addressed this issue in its Security Update Guide, and the vulnerability is part of a broader set of DirectX and GDI+ graphics fixes that require prioritized but measured remediation. Users should apply the relevant Windows security updates to mitigate the risk.
Microsoft’s Security Update Guide lists CVE-2025-64670 as a Windows DirectX information‑disclosure issue in the Microsoft Graphics Component that can allow an authenticated, low‑privilege actor to leak sensitive kernel or process memory over a network‑reachable channel; the advisory signals a...