CVE-2025-21359

Опубликовано: 11 фев. 2025

Источник: msrc

CVSS3: 7.8

EPSS Низкий

Описание

Windows Kernel Security Feature Bypass Vulnerability

What kind of security feature could be bypassed by successfully exploiting this vulnerability?

An authenticated attacker who successfully exploits the vulnerability could bypass the AdminLess security feature.

Продукт	Статья	Обновление
Windows Server 2008 for 32-bit Systems Service Pack 2	5052038 5052072	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2	5052038 5052072	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)	5052038 5052072	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)	5052016 5052032	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1	5052016 5052032	Monthly Rollup Security Only
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)	5052038 5052072	Monthly Rollup Security Only
Windows Server 2012	5052020	Monthly Rollup
Windows Server 2012 (Server Core installation)	5052020	Monthly Rollup
Windows Server 2012 R2	5052042	Monthly Rollup
Windows Server 2012 R2 (Server Core installation)	5052042	Monthly Rollup

Показывать по

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Less Likely

DOS

N/A

EPSS

Процентиль: 26%

0.00086

Низкий

7.8 High

CVSS3

CVE-2025-21359

CVSS3: 7.8

nvd

4 месяца назад

Windows Kernel Security Feature Bypass Vulnerability

GHSA-5h34-2v2x-rw9w

CVSS3: 7.8

github

4 месяца назад

Windows Kernel Security Feature Bypass Vulnerability

BDU:2025-01534

CVSS3: 7.8

fstec

4 месяца назад

Уязвимость ядра операционной системы Windows, позволяющая нарушителю обойти существующие ограничения безопасности

EPSS

Процентиль: 26%

0.00086

Низкий

7.8 High

CVSS3