CVE-2025-47982
storvsp.sys — improper input validation allows elevation of privilege
Summary
| Field | Value |
|---|---|
| Driver | storvsp.sys (Hyper-V Storage Virtual Service Provider) |
| Vulnerability Class | Improper Input Validation |
| CVSS | 7.8 |
| Exploited ITW | No |
| Patch Date | July 8, 2025 |
Root Cause
The Storage VSP driver accepts input from guest VMs during virtual storage operations without validation. Malformed input from a Hyper-V guest corrupts kernel memory on the host.
Exploitation
The attacker sends crafted storage requests from a Hyper-V guest VM. The missing validation causes kernel memory corruption on the host, which gives privilege escalation.
Exploitation Primitive
Crafted guest storage request → improper validation
→ host kernel memory corruption → SYSTEM