Windows Ancillary for WinSock 0-Day Vulnerability Actively Exploited to Gain Admin Access

[Shane1145]

Microsoft has confirmed active exploitation of a critical privilege escalation vulnerability in the Windows Ancillary Function Driver for WinSock, tracked as CVE-2025-32709.

This use-after-free flaw enables local attackers with basic user privileges to gain SYSTEM-level access, posing significant risks to unpatched systems.

https://gbhackers.com/windows-ancillary ... exploited/