CVE-2025-58719 is a use-after-free vulnerability classified under CWE-416 found in the Connected Devices Platform Service (Cdpsvc) component of Microsoft Windows 10 Version 1607 (build 10.0.14393.0). Use-after-free vulnerabilities occur when a program continues to use memory after it has been freed, leading to undefined behavior such as crashes or potential code execution. In this case, the flaw allows an authorized local attacker with low privileges to elevate their privileges on the affected system. The vulnerability requires local access, and the attack complexity is high, meaning exploitation is non-trivial and likely requires detailed knowledge of the system internals. No user interaction is needed, and the scope is unchanged, indicating the vulnerability affects only the local system without spreading to other components or systems. The CVSS v3.1 base score is 4.7 (medium severity), reflecting the limited impact on confidentiality and integrity but a high impact on availability due to potential system crashes or denial of service. No known exploits have been reported in the wild, and no official patches have been published at the time of disclosure. The vulnerability primarily threatens legacy Windows 10 installations, which may still be in use in certain enterprise environments or embedded systems. The lack of patch availability necessitates interim mitigations to reduce risk.

The primary impact of CVE-2025-58719 is local privilege escalation, which can allow an attacker with limited access to gain higher system privileges. This can lead to denial of service by causing system instability or crashes due to improper memory handling. Although confidentiality and integrity are not directly compromised, the elevated privileges could enable further malicious actions if combined with other vulnerabilities or misconfigurations. Organizations running Windows 10 Version 1607, especially in critical infrastructure or legacy environments, may face increased risk of disruption. The high attack complexity and requirement for local access limit the threat to insiders or attackers who have already breached perimeter defenses. However, the absence of patches and the potential for privilege escalation make this vulnerability a concern for maintaining system stability and security in affected environments.

Since no official patches are currently available, organizations should implement specific mitigations to reduce exposure. These include restricting access to the Connected Devices Platform Service (Cdpsvc) by limiting which users and processes can interact with it, using application whitelisting and least privilege principles. Disabling or uninstalling Cdpsvc where feasible can reduce the attack surface. Monitoring system logs for unusual activity related to Cdpsvc may help detect exploitation attempts. Organizations should prioritize upgrading affected systems to a supported and patched Windows version, as Windows 10 Version 1607 is legacy and out of mainstream support. Employing endpoint detection and response (EDR) solutions to identify anomalous privilege escalation behaviors can provide additional defense. Network segmentation to limit local access and enforcing strict access controls on endpoints will further mitigate risk.