14Oca
CVE-2025-21266 | Microsoft Windows up to Server 2025 Telephony Service heap-based overflow
A vulnerability was found in Microsoft Windows. It has been classified as critical. Affected is an unknown function of the component Telephony Service. The manipulation leads to heap-based buffer overflow. This vulnerability is traded as CVE-2025-21266. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.