CVE-2025-27732: Windows Graphics Component Elevation of Privilege Vulnerability
First published: Wed Apr 02 2025(Updated: )
<p>Sensitive data storage in improperly locked memory in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.</p>
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Windows Server | ||
| Microsoft Windows Server 2019 | ||
| Microsoft Windows Server | ||
| Microsoft Windows Server 2012 R2 | ||
| Microsoft Windows Server 2012 R2 | ||
| Microsoft Windows Server | ||
| Microsoft Windows Server 2022 | ||
| Windows 10 | =1809 | |
| Windows 10 | =21H2 | |
| Microsoft Windows Server 2025 | ||
| Windows 11 | =23H2 | |
| Windows 10 | =1607 | |
| Windows 11 | =22H2 | |
| Windows 10 | =21H2 | |
| Windows 10 | =21H2 | |
| Microsoft Windows Server 2019 | ||
| Microsoft Windows Server 2008 R2 | ||
| Microsoft Windows Server 2008 R2 | ||
| Windows 10 | =22H2 | |
| Microsoft Windows Server | ||
| Microsoft Windows Server | ||
| Windows 11 | =24H2 | |
| Windows 10 | =22H2 | |
| Microsoft Windows Server 2025 | ||
| Windows 11 | =24H2 | |
| Microsoft Windows Server 2022 | ||
| Microsoft Windows Server 2016 | ||
| Windows 11 | =22H2 | |
| Windows 11 | =23H2 | |
| Microsoft Windows Server 2022 23H2 | ||
| Microsoft Windows Server | ||
| Windows 10 | =22H2 | |
| Microsoft Windows Server 2016 | ||
| Windows 10 | =1607 | |
| Windows 10 | =1809 | |
| Windows 10 | ||
| Windows 10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2025-27732?
CVE-2025-27732 is classified as a high severity vulnerability due to its potential for local privilege escalation.
How do I fix CVE-2025-27732?
To fix CVE-2025-27732, apply the latest patches provided by Microsoft for affected Windows products.
Which Windows versions are affected by CVE-2025-27732?
CVE-2025-27732 affects multiple Windows Server and Windows 10 versions, including Windows Server 2008, 2012, 2019, and 2022, as well as Windows 10 versions 1607, 1809, 21H2, and 22H2.
What are the implications of CVE-2025-27732?
An attacker can exploit CVE-2025-27732 to access sensitive data and elevate privileges on affected systems, compromising their security.
Is CVE-2025-27732 remote exploitable?
No, CVE-2025-27732 can only be exploited by authorized users with local access to the affected system.
- collector/mitre-cve
- source/MITRE
- collector/msrc-cve
- source/Microsoft
- agent/title
- agent/references
- agent/type
- agent/first-publish-date
- agent/software-canonical-lookup
- collector/msrc
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/author
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/source
- agent/description
- agent/tags
- agent/event
- vendor/microsoft
- canonical/microsoft windows server
- canonical/microsoft windows server 2019
- canonical/microsoft windows server 2012 r2
- canonical/microsoft windows server 2022
- canonical/windows 10
- version/windows 10/1809
- version/windows 10/21h2
- canonical/microsoft windows server 2025
- canonical/windows 11
- version/windows 11/23h2
- version/windows 10/1607
- version/windows 11/22h2
- canonical/microsoft windows server 2008 r2
- version/windows 10/22h2
- version/windows 11/24h2
- canonical/microsoft windows server 2016
- canonical/microsoft windows server 2022 23h2