CVE-2025-21334

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

CVSS 7.8 HIGHEPSS 1.5%● KEVCWE-416

In short

A security flaw in Windows Hyper-V allows a user with limited privileges to gain higher system access by exploiting a vulnerability in the NT Kernel Integration VSP component. This is dangerous because it lets attackers bypass security protections and take control of critical system functions.

Technical detail

This vulnerability exists in the Hyper-V NT Kernel Integration VSP (Virtual Service Provider) and allows privilege escalation through improper memory handling (CWE-416: Use-After-Free). An attacker with local access can exploit this flaw to execute arbitrary code with elevated privileges, bypassing isolation boundaries.

Summary generated and translated by AI from the official description.

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Affected products

Microsoft · Windows 10 Version 21H2 Microsoft · Windows 10 Version 22H2 Microsoft · Windows 11 version 22H2 Microsoft · Windows 11 version 22H3 Microsoft · Windows 11 Version 23H2 Microsoft · Windows 11 Version 24H2 Microsoft · Windows Server 2022, 23H2 Edition (Server Core installation)Microsoft · Windows Server 2025 Microsoft · Windows Server 2025 (Server Core installation)

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21334 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-21334