All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

CVE-2025-53136: Microsoft Patches Windows Kernel Information Disclosure Vulnerability Bypassing KASLR

By

voidsec

8mo ago· 4 min readenNews
Bagel score 65 of 100
65/100
Toasty
Bagelometer

Solid neighbourhood-bakery energy. Trustworthy and warm.

Score65TypenewsSentimentneutral

Summary

Microsoft patched CVE-2025-53136, a kernel information disclosure vulnerability in Windows NT OS Kernel that allowed leaking kernel base addresses, effectively bypassing KASLR (Kernel Address Space Layout Randomization). The vulnerability existed in the kernel's handling of certain system information queries, and while Microsoft had previously mitigated many similar leaks starting with Windows 11/Windows Server 2022 24H2, this one remained exploitable. The article discusses how even security patches can inadvertently open new exploitation vectors.

Key quotes

· 3 pulled
Microsoft mitigated many traditional kernel information leaks starting with Windows 11/Windows Server 2022 24H2... by suppressing kernel base addresses unless the caller had the SeDebugPrivilege, typically reserved for administrative processes.
That change effectively neutered one of the most accessible KASLR bypass techniques, and, without knowledge of the kernel's base address...
Bidding farewell to one of the last kernel address leaks, CVE-2025-53136. Even patches can open new doors for exploitation.
Snippet from the RSS feed
Bidding farewell to one of the last kernel address leaks, CVE-2025-53136. Even patches can open new doors for exploitation.

You might also wanna read

Microsoft patches high-severity SharePoint RCE vulnerability CVE-2026-45659

Microsoft has patched a high-severity remote code execution vulnerability (CVE-2026-45659) in SharePoint that affects SharePoint Server Subs

helpnetsecurity.com·5d ago

Microsoft threatens legal action over unpatched Windows zero-day disclosures

Microsoft is threatening legal action against security researchers who publicly disclose unpatched Windows zero-day vulnerabilities. The com

heise.de·3d ago

Microsoft criticizes uncoordinated disclosure of six zero-day vulnerabilities

Microsoft has criticized the irresponsible disclosure of six zero-day vulnerabilities in its products, named BlueHammer, GreenPlasma, MiniPl

briefly.co·2d ago

Microsoft releases critical security patch for SharePoint deserialization vulnerability

Microsoft has released May updates for SharePoint servers that patch a highly critical security vulnerability (CVE-2026-45659, CVSS 8.8). Th

heise.de·4d ago

Microsoft's NLWeb Protocol Faces Early Security Flaw, Exposing Sensitive Data

Researchers discovered a critical vulnerability in Microsoft's NLWeb protocol, which was recently introduced as a revolutionary tool for int

The Verge·9mo ago

Microsoft calls for coordinated vulnerability disclosure after zero-day disclosures put customers at risk

Microsoft addresses the recent public disclosure of zero-day vulnerabilities that were not shared with the company beforehand, putting custo

microsoft.com·1d ago