Windows Driver Zero-Day Vulnerability Allow Attackers To Gain System Access Remotely
- С сайта: Vulnerability(cybersecuritynews.com)
- Вернуться к списку новостей
С сайта: Vulnerability(cybersecuritynews.com)
A critical zero-day vulnerability has been discovered in a Windows driver, allowing attackers to gain remote access to systems.
This vulnerability, identified as CVE-2025-21418, was disclosed on February 11, 2025, and is classified as “Important” with a CVSS score of 7.8.
The vulnerability is a heap-based buffer overflow, categorized under CWE-122.
The vulnerability exploits a weakness in the driver, enabling attackers to elevate privileges to SYSTEM level.
This means that if successfully exploited, an attacker could gain full control over the affected system.
While the Microsoft analysts identified that the CVSS vector string for this vulnerability is AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C, which indicate that the attack vector is local, but the impact is severe.
Exploitability & Affected Systems
Although the vulnerability has not been publicly disclosed, exploitation has been detected. This suggests that attackers are already aware of and are utilizing this vulnerability.
The temporal score is slightly lower at 7.2, reflecting the evolving nature of the threat as more information becomes available.
This vulnerability affects a wide range of Windows systems, including Windows 10, Windows 11, and various Windows Server versions.
Microsoft has released security updates for these systems, which are crucial for mitigating the risk. For example, updates for Windows 11 Version 24H2 and Windows Server 2025 include patches with identifiers such as 5051987 and 5052105.
To protect against this vulnerability, users are advised to apply the latest security updates as soon as possible. Microsoft’s Patch Tuesday updates for February 2025 include fixes for this vulnerability.
Users should prioritize installing the latest security patches to prevent potential attacks. Staying informed about vulnerabilities and applying timely updates is crucial for maintaining system security.
#Cyber_Security_News #Vulnerability #cyber_security_news #vulnerability
Оригинальная версия на сайте:
Windows Driver Zero-Day Vulnerability Allow Attackers To Gain System Access Remotely
Author: Tushar Subhra DuttaA critical zero-day vulnerability has been discovered in a Windows driver, allowing attackers to gain remote access to systems.
This vulnerability, identified as CVE-2025-21418, was disclosed on February 11, 2025, and is classified as “Important” with a CVSS score of 7.8.
The vulnerability is a heap-based buffer overflow, categorized under CWE-122.
The vulnerability exploits a weakness in the driver, enabling attackers to elevate privileges to SYSTEM level.
This means that if successfully exploited, an attacker could gain full control over the affected system.
While the Microsoft analysts identified that the CVSS vector string for this vulnerability is AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C, which indicate that the attack vector is local, but the impact is severe.
Exploitability & Affected Systems
Although the vulnerability has not been publicly disclosed, exploitation has been detected. This suggests that attackers are already aware of and are utilizing this vulnerability.
The temporal score is slightly lower at 7.2, reflecting the evolving nature of the threat as more information becomes available.
This vulnerability affects a wide range of Windows systems, including Windows 10, Windows 11, and various Windows Server versions.
Microsoft has released security updates for these systems, which are crucial for mitigating the risk. For example, updates for Windows 11 Version 24H2 and Windows Server 2025 include patches with identifiers such as 5051987 and 5052105.
To protect against this vulnerability, users are advised to apply the latest security updates as soon as possible. Microsoft’s Patch Tuesday updates for February 2025 include fixes for this vulnerability.
Users should prioritize installing the latest security patches to prevent potential attacks. Staying informed about vulnerabilities and applying timely updates is crucial for maintaining system security.
#Cyber_Security_News #Vulnerability #cyber_security_news #vulnerability
Оригинальная версия на сайте:
