Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver allows an authorized attacker to elevate privileges locally.
https://www.crowdfense.com/cve-2025-53149-windows-ksthunk-heap-overflow/
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53149