Full Report
Microsoft has released an emergency Windows 11 24H2 update to address an incompatibility issue triggering restarts with blue screen of death (BSOD) errors on systems with Easy Anti-Cheat. [...]
Analysis Summary
As a vulnerability research specialist, here is the summary of the information provided, focusing on actionable details. Note that the provided article heavily references multiple distinct security updates (an emergency update for Windows 11 24H2, and the general June 2025 Patch Tuesday). This summary aggregates details for the highlighted vulnerabilities based on the context provided.
# Vulnerability: Windows Easy Anti-Cheat BSOD Issue & June 2025 Patch Tuesday Flaws
## CVE Details
* **CVE ID:** CVE-2025-33073, CVE-2025-33053 (Other vulnerabilities fixed in June 2025 Patch Tuesday are implied but not detailed by ID/Score, except for these two.)
* **CVSS Score:** Not provided for the specific issues mentioned (BSOD or the two CVEs). Individual scores would need lookup via MSRC.
* **CWE:** Not explicitly mentioned for the specific flaws summarized.
## Affected Systems
* **Products:** Windows 11 (Specifically related to the 24H2 build experiencing Easy Anti-Cheat issues). Also systems running Windows 11 affected by the June 2025 security updates.
* **Versions:** Windows 11 version 24H2 (Prior to emergency/cumulative updates). Affected by BSODs related to Easy Anti-Cheat.
* **Configurations:** Systems utilizing Easy Anti-Cheat software were affected, particularly impacting Intel Alder Lake+ and vPro systems running Windows 24H2.
## Vulnerability Description
The primary issue highlighted is an **Easy Anti-Cheat (EAC) BSOD issue** in Windows 11 24H2, which resulted in **"MEMORY\_MANAGEMENT" errors** (Blue Screen of Death) on affected systems, particularly those with newer Intel CPUs (Alder Lake+ and vPro).
Additionally, the June 2025 Patch Tuesday addressed:
1. A publicly disclosed **Windows SMB privilege escalation flaw (CVE-2025-33073)**.
2. An **actively exploited Web Distributed Authoring and Versioning (WebDAV) zero-day (CVE-2025-33053)**.
*Note: The description of ten critical RCE flaws fixed is noted, but specific CVEs/details are missing.*
## Exploitation
* **Status:** CVE-2025-33053 (WebDAV zero-day) is indicated as **Actively exploited in the wild**. The EAC BSOD issue appears to be a stability/DoS flaw, not a remote exploitation vulnerability, though system crashes are a form of unavailability.
* **Complexity:** Not specified, but due to active exploitation of CVE-2025-33053, exploitation complexity is likely low to medium for that specific flaw.
* **Attack Vector:** Likely **Network** for CVE-2025-33053 (WebDAV) and potentially **Local/System** trigger for the EAC instability.
## Impact
* **Confidentiality:** Unknown for EAC issue. Potentially High for RCE or Privilege Escalation flaws mentioned in the cumulative updates.
* **Integrity:** High for EAC issue due to system crashes/BSOD. High for Privilege Escalation flaws.
* **Availability:** High for EAC issue due to system unavailability (BSODs).
## Remediation
### Patches
* **EAC BSOD Fix:** An **emergency update** for Windows 11 24H2 was released to fix the Easy Anti-Cheat BSOD issue (`KB5063060` mentioned as the target update applied via Windows Update, or manually download).
* **June Security Flaws:**
* KB5060842 (Cumulative Update for applicable Windows 11 versions)
* KB5060999 (Cumulative Update for applicable Windows 11 versions)
### Workarounds
* **EAC BSOD Issue/Pre-Patch:** Microsoft **placed a compatibility hold** to block Windows 24H2 upgrades on Intel Alder Lake+ and vPro systems to prevent the crash. Users should ensure they download/install the emergency update/subsequent CUs to resolve this.
## Detection
* **Indicators of Compromise (IOCs):** Not specified for the specific CVEs mentioned in the summary, but systems experiencing the EAC issue will show `MEMORY_MANAGEMENT` stop codes in system logs.
* **Detection Methods and Tools:** Standard vulnerability scanning to verify patch levels (KB numbers listed above). Monitoring for unusual SMB activity or WebDAV requests may be relevant for CVE-2025-33053 exploitation attempts prior to patching.
## References
* Vendor Advisory (MSRC June 2025 updates, specific KB documentation)
* Primary Article (Defanged): bleepingcomputer.com/news/microsoft/windows-11-24h2-emergency-update-fixes-easy-anti-cheat-bsod-issue/
* Security Updates (Defanged): bleepingcomputer.com/news/microsoft/windows-11-kb5060842-and-kb5060999-cumulative-updates-released/