CVE-2025-48822
Published: 08 July 2025
Summary
CVE-2025-48822 is a high-severity Out-of-bounds Read (CWE-125) vulnerability in Microsoft Windows 10 1607. Its CVSS base score is 8.6 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked in the top 33.5% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SI-2 (Flaw Remediation) and SI-10 (Information Input Validation).
Threat & Defense at a Glance
Threat & Defense Details
Mitigating Controls (NIST 800-53 r5)AI
Directly remediates the out-of-bounds read vulnerability in Windows Hyper-V through timely application of vendor-provided patches to prevent local code execution.
Implements memory protection mechanisms that mitigate arbitrary code execution resulting from exploitation of the out-of-bounds read in Hyper-V.
Validates inputs to Hyper-V components to prevent malformed data that could trigger the out-of-bounds read vulnerability exploited by tricking a user.
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
OOB read in Hyper-V directly enables local exploitation for arbitrary code execution with scope change and high impacts on confidentiality/integrity/availability, mapping to privilege escalation via vulnerability exploitation.
NVD Description
Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally.
Deeper analysisAI
CVE-2025-48822 is an out-of-bounds read vulnerability (CWE-125) affecting Windows Hyper-V. Published on 2025-07-08, it carries a CVSS v3.1 base score of 8.6 (AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H), indicating high severity due to its potential for significant impact.
A local unauthorized attacker can exploit this vulnerability with low attack complexity by tricking a user into performing a specific action. Successful exploitation allows the attacker to execute arbitrary code, achieving high impacts on confidentiality, integrity, and availability, with a scope change to other privileged components.
Microsoft's update guide provides details on mitigation and patches for CVE-2025-48822 at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-48822.
Details
- CWE(s)