CVE-2025-21377External Control of File Name or Path in Microsoft Windows 10 Version 1507

CWE-73External Control of File Name or Path9 documents7 sources
Severity
6.5MEDIUMCNA
No vector
EPSS
3.8%
top 11.90%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
17
Microsoft Windows 10 Version 1507Microsoft Windows 10 Version 1607Microsoft Windows 10 Version 1809+14 more
Timeline
PublishedFeb 11
Latest updateFeb 12

Description

NTLM Hash Disclosure Spoofing Vulnerability NTLM Hash Disclosure Spoofing Vulnerability

Affected Packages17 packages

CVEListV5microsoft/windows_server_20126.2.9200.06.2.9200.25317
CVEListV5microsoft/windows_server_201610.0.14393.010.0.14393.7785
CVEListV5microsoft/windows_server_201910.0.17763.010.0.17763.6893
CVEListV5microsoft/windows_server_202210.0.20348.010.0.20348.3207
CVEListV5microsoft/windows_server_202510.0.26100.010.0.26100.3194

🔴Vulnerability Details

1
CVEList
NTLM Hash Disclosure Spoofing Vulnerability2025-02-11

📋Vendor Advisories

1
Microsoft
NTLM Hash Disclosure Spoofing Vulnerability2025-02-11

🕵️Threat Intelligence

7
Krebs
Microsoft Patch Tuesday, February 2025 Edition2025-02-12
Krebs
Microsoft Patch Tuesday, February 2025 Edition2025-02-12
Qualys
Microsoft and Adobe Patch Tuesday, February 2025 Security Update Review2025-02-11
Qualys
Microsoft and Adobe Patch Tuesday, February 2025 Security Update Review | Qualys2025-02-11
Bleepingcomputer
Microsoft February 2025 Patch Tuesday fixes 4 zero-days, 55 flaws2025-02-11
CVE-2025-21377 — External Control of File Name or Path | cvebase