Home

Description

Uncontrolled resource consumption in Windows Remote Procedure Call allows an unauthorized attacker to deny service over a network.

PUBLISHED Reserved 2025-09-17 | Published 2025-10-14 | Updated 2025-11-22 | Assigner microsoft




HIGH: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

Problem types

CWE-400: Uncontrolled Resource Consumption

Product status

10.0.17763.0 (custom) before 10.0.17763.7792
affected

10.0.17763.0 (custom) before 10.0.17763.7792
affected

10.0.17763.0 (custom) before 10.0.17763.7792
affected

10.0.20348.0 (custom) before 10.0.20348.4171
affected

10.0.19044.0 (custom) before 10.0.19044.6332
affected

10.0.22621.0 (custom) before 10.0.22631.5909
affected

10.0.19045.0 (custom) before 10.0.19044.6332
affected

10.0.26100.0 (custom) before 10.0.26100.6584
affected

10.0.22631.0 (custom) before 10.0.22631.5909
affected

10.0.22631.0 (custom) before 10.0.22631.5909
affected

10.0.25398.0 (custom) before 10.0.25398.1849
affected

10.0.26100.0 (custom) before 10.0.26100.6584
affected

10.0.26100.0 (custom) before 10.0.26100.6584
affected

References

msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59502 (Remote Procedure Call Denial of Service Vulnerability) vendor-advisory

cve.org (CVE-2025-59502)

nvd.nist.gov (CVE-2025-59502)

Download JSON