Improper validation of specified type of input in Windows Local Session Manager (LSM) allows an authorized attacker to deny service over a network.
2025-10-14T17:16:08.280
2025-10-20T19:49:05.413
Analyzed
CVSSv3.1: 6.5 (MEDIUM)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | microsoft | windows_11_24h2 | < 10.0.26100.6899 | Yes |
| Operating System | microsoft | windows_11_25h2 | < 10.0.26200.6899 | Yes |
| Operating System | microsoft | windows_server_2022_23h2 | < 10.0.25398.1913 | Yes |
| Operating System | microsoft | windows_server_2025 | ≤ 10.0.26100.6899 | Yes |