cbcvebase.
CVE-2025-21198
published 2025-02-11

CVE-2025-21198: Microsoft High Performance Compute (HPC) Pack Remote Code Execution Vulnerability

PriorityP352critical9CVSS 3.1
AVAACLPRLUINSCCHIHAH
EPSS
0.87%
54.3th percentile
Microsoft High Performance Compute (HPC) Pack Remote Code Execution Vulnerability

Affected

6 ranges
VendorProductVersion rangeFixed in
microsofthpc_pack_2016< 2016.32016.3
microsofthpc_pack_2019< 6.3.8328.06.3.8328.0
microsoftmicrosoft_hpc_pack_2016>= 1.0.0 < 2016.32016.3
microsoftmicrosoft_hpc_pack_2019>= 1.0.0 < 6.3.8328.06.3.8328.0
msrcmicrosoft_hpc_pack_2016
msrcmicrosoft_hpc_pack_2019

CVSS provenance

nvdv3.19.0CRITICALCVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
vendor_msrc9.0CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.