Windows Speech
by Microsoft
CVEs (5)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-58716 | Hig | 0.57 | 8.8 | 0.00 | Oct 14, 2025 | Improper input validation in Microsoft Windows Speech allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-58715 | Hig | 0.57 | 8.8 | 0.00 | Oct 14, 2025 | Integer overflow or wraparound in Microsoft Windows Speech allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59508 | Hig | 0.46 | 7.0 | 0.00 | Nov 11, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Speech allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59507 | Hig | 0.46 | 7.0 | 0.00 | Nov 11, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Speech allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59509 | Med | 0.36 | 5.5 | 0.01 | Nov 11, 2025 | Insertion of sensitive information into sent data in Windows Speech allows an authorized attacker to disclose information locally. |
- risk 0.57cvss 8.8epss 0.00
Improper input validation in Microsoft Windows Speech allows an authorized attacker to elevate privileges locally.
- risk 0.57cvss 8.8epss 0.00
Integer overflow or wraparound in Microsoft Windows Speech allows an authorized attacker to elevate privileges locally.
- risk 0.46cvss 7.0epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Speech allows an authorized attacker to elevate privileges locally.
- risk 0.46cvss 7.0epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Speech allows an authorized attacker to elevate privileges locally.
- risk 0.36cvss 5.5epss 0.01
Insertion of sensitive information into sent data in Windows Speech allows an authorized attacker to disclose information locally.