CVE Vulnerabilities

CVE-2025-21182

Double Free

Published: Feb 11, 2025 | Modified: Feb 25, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

Windows Resilient File System (ReFS) Deduplication Service Elevation of Privilege Vulnerability

Weakness

The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.

Affected Software

Name Vendor Start Version End Version
Windows_11_24h2 Microsoft * 10.0.26100.3107 (excluding)
Windows_server_2025 Microsoft * 10.0.26100.3107 (excluding)

Potential Mitigations

References