14Oca
CVE-2025-21238 | Microsoft Windows up to Server 2025 Telephony Service heap-based overflow
A vulnerability, which was classified as critical, has been found in Microsoft Windows. Affected by this issue is some unknown functionality of the component Telephony Service. The manipulation leads to heap-based buffer overflow. This vulnerability is handled as CVE-2025-21238. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.