CVE-2025-21180

Опубликовано: 11 мар. 2025

Источник: msrc

CVSS3: 7.8

EPSS Низкий

Описание

Windows exFAT File System Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows exFAT File System allows an unauthorized attacker to execute code locally.

FAQ

According to the CVSS metric, the attack vector is local (AV:L). Why does the CVE title indicate that this is a remote code execution?

The word Remote in the title refers to the location of the attacker. This type of exploit is sometimes referred to as Arbitrary Code Execution (ACE). The attack itself is carried out locally. This means an attacker or victim needs to execute code from the local machine to exploit the vulnerability.

According to the CVSS metric, the attack vector is local (AV:L) while user interaction is required (UI:R). What does that mean for this vulnerability?

An attacker can trick a local user on a vulnerable system into mounting a specially crafted VHD that would then trigger the vulnerability.

Обновления

Продукт	Статья	Обновление
Windows Server 2008 for 32-bit Systems Service Pack 2	5053888 5053995	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2	5053888 5053995	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)	5053888 5053995	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)	5053620 5053627	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1	5053620 5053627	Monthly Rollup Security Only
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)	5053888 5053995	Monthly Rollup Security Only
Windows Server 2012	5053886	Monthly Rollup
Windows Server 2012 (Server Core installation)	5053886	Monthly Rollup
Windows Server 2012 R2	5053887	Monthly Rollup
Windows Server 2012 R2 (Server Core installation)	5053887	Monthly Rollup

Показывать по

Возможность эксплуатации

Publicly Disclosed

Exploited

Latest Software Release

Exploitation More Likely

DOS

N/A

EPSS

Процентиль: 28%

0.00098

Низкий

7.8 High

CVSS3

Связанные уязвимости

CVE-2025-21180

CVSS3: 7.8

nvd

3 месяца назад

Heap-based buffer overflow in Windows exFAT File System allows an unauthorized attacker to execute code locally.

GHSA-fhp9-73g9-7fgj

CVSS3: 7.8

github

3 месяца назад

Heap-based buffer overflow in Windows exFAT File System allows an unauthorized attacker to execute code locally.

BDU:2025-03246

CVSS3: 7.8

fstec

3 месяца назад

Уязвимость файловой системы exFAT File System операционной системы Windows, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 28%

0.00098

Низкий

7.8 High

CVSS3