CVE-2025-21307

Опубликовано: 14 янв. 2025

Источник: msrc

CVSS3: 9.8

EPSS Низкий

Описание

Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability

Меры по смягчению последствий

The following mitigating factors might be helpful in your situation:

This vulnerability is only exploitable only if there is a program listening on a Pragmatic General Multicast (PGM) port. If PGM is installed or enabled but no programs are actively listening as a receiver, then this vulnerability is not exploitable.

PGM does not authenticate requests so it is recommended to protect access to any open ports at the network level (e.g. with a firewall). It is not recommended to expose a PGM receiver to the public internet.

FAQ

How could an attacker exploit this vulnerability?

An unauthenticated attacker could exploit the vulnerability by sending specially crafted packets to a Windows Pragmatic General Multicast (PGM) open socket on the server, without any interaction from the user.

Обновления

Продукт	Статья	Обновление
Windows Server 2008 for 32-bit Systems Service Pack 2	5050063 5050061	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2	5050063 5050061	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)	5050063 5050061	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)	5050049 5050006	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1	5050049 5050006	Monthly Rollup Security Only
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)	5050063 5050061	Monthly Rollup Security Only
Windows Server 2012	5050004	Monthly Rollup
Windows Server 2012 (Server Core installation)	5050004	Monthly Rollup
Windows Server 2012 R2	5050048	Monthly Rollup
Windows Server 2012 R2 (Server Core installation)	5050048	Monthly Rollup

Показывать по

Возможность эксплуатации

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Less Likely

DOS

N/A

EPSS

Процентиль: 92%

0.09584

Низкий

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2025-21307

CVSS3: 9.8

nvd

5 месяцев назад

Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability

GHSA-j9w9-6jj7-c2px

CVSS3: 9.8

github

5 месяцев назад

Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability

BDU:2025-00433

CVSS3: 9.8

fstec

5 месяцев назад

Уязвимость драйвера надежной многоадресной передачи Reliable Multicast Transport Driver (RMCAST) операционных систем Windows, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 92%

0.09584

Низкий

9.8 Critical

CVSS3