Windows Connected Devices Platform Service (Cdpsvc) Denial of Service Vulnerability

7 / 10

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Connected Devices Platform Service allows an authorized attacker to deny service locally.

Visit Original Source

Basic Information

ID MS:CVE-2025-54114

Published Sep 9, 2025 at 07:00

{
    "lastseen": "2025-09-09T17:37:48",
    "description": "Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Connected Devices Platform Service allows an authorized attacker to deny service locally.\n",
    "published": "2025-09-09T07:00:00",
    "modified": "2025-09-09T07:00:00",
    "type": "mscve",
    "title": "Windows Connected Devices Platform Service (Cdpsvc) Denial of Service Vulnerability",
    "source": "",
    "references": "",
    "id": "MS:CVE-2025-54114",
    "bulletinFamily": "microsoft",
    "cwe": null,
    "cvelist": [
        "CVE-2025-54114"
    ],
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 7,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-54114",
    "category_name": "News",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Windows Connected Devices Platform Service (Cdpsvc) Denial of Service Vulnerability_MS:CVE-2025-54114

Description

Basic Information

💭 Join the Security Discussion ❌ Cancel Reply