CVE-2025-53779Relative Path Traversal in Microsoft Windows Server 2025

CWE-23Relative Path Traversal11 documents8 sources
Severity
7.2HIGHNVD
EPSS
0.5%
top 34.60%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Microsoft Windows Server 2025Msrc Windows Server 2025
Timeline
PublishedAug 12

Description

Relative path traversal in Windows Kerberos allows an authorized attacker to elevate privileges over a network.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 1.2 | Impact: 5.9

Affected Packages3 packages

NVDmicrosoft/windows< 10.0.26100.4851
CVEListV5microsoft/windows_server_202510.0.26100.010.0.26100.4946

🔴Vulnerability Details

1
GHSA
GHSA-93cj-3754-25wf: Relative path traversal in Windows Kerberos allows an authorized attacker to elevate privileges over a network2025-08-12

📋Vendor Advisories

1
Microsoft
Windows Kerberos Elevation of Privilege Vulnerability2025-08-12

🕵️Threat Intelligence

8
Tenable
Microsoft’s August 2025 Patch Tuesday Addresses 107 CVEs (CVE-2025-53779)2025-08-12
Krebs
Microsoft Patch Tuesday, August 2025 Edition2025-08-12
Bleepingcomputer
Microsoft August 2025 Patch Tuesday fixes one zero-day, 107 flaws2025-08-12
Qualys
Microsoft and Adobe Patch Tuesday, August 2025 Security Update Review | Qualys2025-08-12
Krebs
Microsoft Patch Tuesday, August 2025 Edition2025-08-12
CVE-2025-53779 — Relative Path Traversal in Microsoft | cvebase