CVE-2025-21297 — Use After Free in Microsoft Windows Server 2008 R2 Service Pack 1

CWE-416 — Use After Free11 documents9 sources

Severity

8.1HIGHNVD

EPSS

1.7%

top 17.63%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows Server 2008 R2 Service Pack 1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 +6 more

Timeline

PublishedJan 14

Description

Windows Remote Desktop Services Remote Code Execution Vulnerability

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.2 | Impact: 5.9

Affected Packages8 packages

▶NVDmicrosoft/windows< 10.0.14393.7699+5

▶CVEListV5microsoft/windows_server_20126.2.9200.0 — 6.2.9200.25273

▶CVEListV5microsoft/windows_server_201610.0.14393.0 — 10.0.14393.7699

▶CVEListV5microsoft/windows_server_201910.0.17763.0 — 10.0.17763.6775

▶CVEListV5microsoft/windows_server_202210.0.20348.0 — 10.0.20348.3091

Patches

Patch: msrc.microsoft.com ↗

🔴Vulnerability Details

CVEList

Windows Remote Desktop Services Remote Code Execution Vulnerability↗2025-01-14

▶

GHSA

GHSA-w569-9p5v-c7v7: Windows Remote Desktop Services Remote Code Execution Vulnerability↗2025-01-14

▶

📋Vendor Advisories

Microsoft

Windows Remote Desktop Services Remote Code Execution Vulnerability↗2025-01-14

▶

🕵️Threat Intelligence

Bleepingcomputer

Microsoft January 2025 Patch Tuesday fixes 8 zero-days, 159 flaws↗2025-01-14

▶

Tenable

Microsoft’s January 2025 Patch Tuesday Addresses 157 CVEs (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335)↗2025-01-14

▶

Qualys

Microsoft and Adobe Patch Tuesday, January 2025 Security Update Review↗2025-01-14

▶

Talos

Microsoft Patch Tuesday for January 2025 — Snort rules and prominent vulnerabilities↗2025-01-14

▶

Qualys

Microsoft and Adobe Patch Tuesday, January 2025 Security Update Review | Qualys↗2025-01-14

▶