CVE-2025-26651

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-26651
Exposed dangerous method or function in Windows Local Session Manager (LSM) allows an authorized attacker to deny service over a network.
CVSS

No CVSS.

References
Link Resource
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26651 Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:microsoft:windows_server_2022_23h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_11_23h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_11_24h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*:*
History

10 Jul 2025, 15:25

Type Values Removed Values Added
References () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26651 - () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26651 - Vendor Advisory
First Time Microsoft
Microsoft windows Server 2022 23h2
Microsoft windows 11 22h2
Microsoft windows Server 2025
Microsoft windows Server 2022
Microsoft windows 11 23h2
Microsoft windows 11 24h2
CPE cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2022_23h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_11_23h2:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_11_24h2:*:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : 6.5 		v2 : unknown
v3 : unknown
CWE CWE-749

08 Apr 2025, 18:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-04-08 18:15

Updated : 2025-07-10 15:25

NVD link : CVE-2025-26651

Mitre link : CVE-2025-26651

JSON object : View

Products Affected

microsoft

  • windows_11_22h2
  • windows_11_24h2
  • windows_server_2022_23h2
  • windows_server_2022
  • windows_11_23h2
  • windows_server_2025
CWE

No CWE.