How to fix CVE-2025-24044?

Within 7 days: Identify all affected systems and apply vendor patches promptly. If patching is delayed, consider network segmentation to limit exposure.

Is Windows affected by CVE-2025-24044?

Organizations using Use after free in Windows Win32 Kernel Subsystem face notable risk from CVE-2025-24044, a use-after-free vulnerability rated CVSS 7.8. Exploitation could compromise the security of affected deployments.

CVE-2025-24044

HIGH

2025-03-11 [email protected]

Linux Windows

7.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 19:52 vuln.today

CVE Published

Mar 11, 2025 - 17:16 nvd

HIGH 7.8

DescriptionNVD

Use after free in Windows Win32 Kernel Subsystem allows an authorized attacker to elevate privileges locally.

AnalysisAI

Use after free in Windows Win32 Kernel Subsystem allows an authorized attacker to elevate privileges locally. [CVSS 7.8 HIGH]

Technical ContextAI

Classified as CWE-416 (Use After Free). Use after free in Windows Win32 Kernel Subsystem allows an authorized attacker to elevate privileges locally.

Affected ProductsAI

Use after free in Windows Win32 Kernel Subsystem allows an authorized attacker to elevate privileges locally.

RemediationAI

Monitor vendor advisories for a patch.

CVE-2025-24044 vulnerability details – vuln.today

Back

CVE-2025-24044

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

Affected ProductsAI

RemediationAI

Share

External POC / Exploit Code