CVE-2025-49658 — Out-of-bounds read in Windows TDX.sys allows an authorized attacker to disclose ... | CVE Daily

Medium CVSS 5.5

Overview

Out-of-bounds read in Windows TDX.sys allows an authorized attacker to disclose information locally.

CWE: CWE-125 Published: 2025-07-08T17:15:48.200

Risk analysis

This vulnerability is rated 🟡 MEDIUM.

CVSS: 5.5 (MEDIUM)
Detected tags: oob_read (tag impact: LOW)

Recommended actions:

Prioritize remediation based on business criticality and exposure.
Limit exposure and increase monitoring until fixed.

Recommended tools

Tags

Out-of-Bounds Read