14Oca
CVE-2025-21306 | Microsoft Windows up to Server 2025 Telephony Service heap-based overflow
A vulnerability was found in Microsoft Windows. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Telephony Service. The manipulation leads to heap-based buffer overflow. This vulnerability is known as CVE-2025-21306. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.