CVE-2025-58726

Опубликовано: 14 окт. 2025

Источник: msrc

CVSS3: 7.5

EPSS Низкий

Описание

Windows SMB Server Elevation of Privilege Vulnerability

Improper access control in Windows SMB Server allows an authorized attacker to elevate privileges over a network.

FAQ

How could an attacker exploit the vulnerability?

To exploit this vulnerability, an attacker could execute a specially crafted script to coerce the victim machine to connect back to the attacker’s SMB Server using SMB and authenticate. This could result in elevation of privilege.

What privileges could be gained by an attacker who successfully exploited this vulnerability?

An attacker who successfully exploited this vulnerability could gain SYSTEM privileges.

According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability?

The Attack requires an SPN that is registered to an account that no longer exists or is not in use, to be on the target machine

Обновления

Продукт	Статья	Обновление
Windows Server 2008 for 32-bit Systems Service Pack 2	5066874 5066877	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2	5066874 5066877	Monthly Rollup Security Only
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)	5066874 5066877	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)	5066872 5066876	Monthly Rollup Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1	5066872 5066876	Monthly Rollup Security Only
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)	5066874 5066877	Monthly Rollup Security Only
Windows Server 2012	5066875	Monthly Rollup
Windows Server 2012 (Server Core installation)	5066875	Monthly Rollup
Windows Server 2012 R2	5066873	Monthly Rollup
Windows Server 2012 R2 (Server Core installation)	5066873	Monthly Rollup

Показывать по

Возможность эксплуатации

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Less Likely

EPSS

Процентиль: 32%

0.00124

Низкий

7.5 High

CVSS3

Связанные уязвимости

CVE-2025-58726

CVSS3: 7.5

nvd

2 месяца назад

Improper access control in Windows SMB Server allows an authorized attacker to elevate privileges over a network.

GHSA-929j-57v4-m4wf

CVSS3: 7.5

github

2 месяца назад

Improper access control in Windows SMB Server allows an authorized attacker to elevate privileges over a network.

BDU:2025-13224

CVSS3: 7.5

fstec

2 месяца назад

Уязвимость компонента SMB Server операционной системы Windows, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 32%

0.00124

Низкий

7.5 High

CVSS3