CVE-2025-53803
ntoskrnl.exe — information disclosure via kernel memory leak
Summary
| Field | Value |
|---|---|
| Driver | ntoskrnl.exe |
| Vulnerability Class | Information Disclosure |
| CVSS | 5.5 |
| Exploited ITW | No |
| Patch Date | September 9, 2025 |
Root Cause
The NT kernel returns unsanitized memory to user-mode processes. An information query hands back kernel heap contents, giving an information disclosure primitive.
Exploitation
The attacker queries the kernel through a specific information class. The returned data leaks kernel addresses useful for KASLR bypass.
Exploitation Primitive
Kernel info query → unsanitized data returned
→ kernel address leak → KASLR bypass