Multiple vulnerabilities in Microsoft Windows

Описание

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface.

Below is a complete list of vulnerabilities:

1. An elevation of privilege vulnerability can be exploited remotely to gain privileges.
2. A remote code execution vulnerability in Windows Telephony Service can be exploited remotely to execute arbitrary code.
3. An elevation of privilege vulnerability in Windows Resilient File System (ReFS) Deduplication Service can be exploited remotely to gain privileges.
4. A remote code execution vulnerability in Windows Routing and Remote Access Service (RRAS) can be exploited remotely to execute arbitrary code.
5. An elevation of privilege vulnerability in Windows Disk Cleanup Tool can be exploited remotely to gain privileges.
6. A denial of service vulnerability in Internet Connection Sharing (ICS) can be exploited remotely to cause denial of service.
7. A remote code execution vulnerability in Microsoft Digest Authentication can be exploited remotely to execute arbitrary code.
8. A denial of service vulnerability in Windows Deployment Services can be exploited remotely to cause denial of service.
9. A denial of service vulnerability in Windows Kerberos can be exploited remotely to cause denial of service.
10. A denial of service vulnerability in Windows Active Directory Domain Services API can be exploited remotely to cause denial of service.
11. A denial of service vulnerability in DHCP Client Service can be exploited remotely to cause denial of service.
12. An elevation of privilege vulnerability in Windows Win32 Kernel Subsystem can be exploited remotely to gain privileges.
13. An elevation of privilege vulnerability in Windows Setup Files Cleanup can be exploited remotely to gain privileges.
14. An elevation of privilege vulnerability in Windows Storage can be exploited remotely to gain privileges.
15. An elevation of privilege vulnerability in Windows NTFS can be exploited remotely to gain privileges.
16. An elevation of privilege vulnerability in Kernel Streaming WOW Thunk Service Driver can be exploited remotely to gain privileges.
17. A security feature bypass vulnerability in Windows Kernel can be exploited remotely to bypass security restrictions.
18. An elevation of privilege vulnerability in Windows Installer can be exploited remotely to gain privileges.
19. A spoofing vulnerability in NTLM Hash Disclosure can be exploited remotely to spoof user interface.
20. An elevation of privilege vulnerability in Windows Ancillary Function Driver for WinSock can be exploited remotely to gain privileges.
21. A remote code execution vulnerability in DHCP Client Service can be exploited remotely to execute arbitrary code.
22. A denial of service vulnerability in Microsoft Message Queuing (MSMQ) can be exploited remotely to cause denial of service.
23. A remote code execution vulnerability in Windows Lightweight Directory Access Protocol (LDAP) can be exploited remotely to execute arbitrary code.
24. A tampering vulnerability in Windows Remote Desktop Configuration Service can be exploited remotely to spoof user interface.
25. A remote code execution vulnerability in Windows Telephony Server can be exploited remotely to execute arbitrary code.

Первичный источник обнаружения

• CVE-2025-21414
  CVE-2025-21407
  CVE-2025-21182
  CVE-2025-21410
  CVE-2025-21420
  CVE-2025-21216
  CVE-2025-21369
  CVE-2025-21347
  CVE-2025-21212
  CVE-2025-21358
  CVE-2025-21350
  CVE-2025-21183
  CVE-2025-21351
  CVE-2025-21352
  CVE-2025-21179
  CVE-2025-21367
  CVE-2025-21419
  CVE-2025-21200
  CVE-2025-21371
  CVE-2025-21391
  CVE-2025-21337
  CVE-2025-21190
  CVE-2025-21375
  CVE-2025-21184
  CVE-2025-21368
  CVE-2025-21359
  CVE-2025-21373
  CVE-2025-21254
  CVE-2025-21377
  CVE-2025-21418
  CVE-2025-21379
  CVE-2025-21181
  CVE-2025-21376
  CVE-2025-21349
  CVE-2025-21208
  CVE-2025-21406
  CVE-2025-21201
  

Связанные продукты

• Microsoft-Windows
• Microsoft-Windows-Server
• Microsoft-Windows-10
• Microsoft-Windows-Server-2016
• Microsoft-Windows-Server-2019
• Microsoft-Windows-11
• Microsoft-Windows-Server-2022

Список CVE

• CVE-2025-21414
  high
• CVE-2025-21407
  high
• CVE-2025-21182
  high
• CVE-2025-21410
  high
• CVE-2025-21420
  high
• CVE-2025-21216
  high
• CVE-2025-21369
  high
• CVE-2025-21347
  high
• CVE-2025-21212
  high
• CVE-2025-21358
  high
• CVE-2025-21350
  high
• CVE-2025-21183
  high
• CVE-2025-21351
  high
• CVE-2025-21352
  high
• CVE-2025-21179
  warning
• CVE-2025-21367
  high
• CVE-2025-21419
  high
• CVE-2025-21200
  high
• CVE-2025-21371
  high
• CVE-2025-21391
  high
• CVE-2025-21337
  warning
• CVE-2025-21190
  high
• CVE-2025-21375
  high
• CVE-2025-21184
  high
• CVE-2025-21368
  high
• CVE-2025-21359
  high
• CVE-2025-21373
  high
• CVE-2025-21254
  high
• CVE-2025-21377
  high
• CVE-2025-21418
  high
• CVE-2025-21379
  high
• CVE-2025-21181
  high
• CVE-2025-21376
  high
• CVE-2025-21349
  high
• CVE-2025-21208
  high
• CVE-2025-21406
  high
• CVE-2025-21201
  high

Список KB

• 5052006
• 5051974
• 5052105
• 5052000
• 5051987
• 5051979
• 5052106
• 5051989
• 5052040
• 5051980

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com