Use of Uninitialized Resource

CVE-2025-53799

Medium

5.5/10

Summary

Use of uninitialized resource in Windows Imaging Component allows an unauthorized attacker to disclose information locally.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: NONE
Confidentiality Impact: HIGH
Availability Impact: NONE

CWE-908 - Use of Uninitialized Resource

The software uses or accesses a resource that has not been initialized.

References

Advisory Timeline

Published Sep 09, 2025