The vulnerability is an out‑of‑bounds read in the Windows DHCP server component. An attacker who already has local, authorized access could read memory beyond intended bounds, potentially exposing sensitive information. The CVE description notes information disclosure but does not specify the exact data; it is inferred that configuration settings or credentials might be at risk, though this is not stated explicitly.

Affected are many Windows client and server workloads, including Windows 10 from version 1607 through 22H2, Windows 11 from 23H2 through 26H1, and a range of Windows Server releases from 2012 to 2025. The vulnerability applies to both x86 and x64 architectures, and for Windows 10 and 11 ARM64 builds. The product families listed include both client and server editions, and the description references the DHCP server service.

The CVSS score is 5.5, indicating moderate severity. The EPSS score is not available and the vulnerability is not listed in CISA KEV. The attack vector is local and requires authorized access; an attacker would need physical or privileged network presence to exploit. Once exploitation succeeds, the attacker could read memory data, but the exploit does not provide higher privileges or persistence. Given the moderate score and lack of widespread exploitation data, organizations should treat the issue as a medium risk that warrants patching as soon as updates become available.