CVE-2025-21325

High

Published: 17 January 2025

Published

17 January 2025

Modified

07 February 2025

KEV Added

—

Patch

—

CVSS Score 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score 0.0089 75.7th percentile

Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Description

Windows Secure Kernel Mode Elevation of Privilege Vulnerability

Security Summary

CVE-2025-21325 is a Windows Secure Kernel Mode Elevation of Privilege Vulnerability, published on 2025-01-17T01:15:31.073. It affects the Windows Secure Kernel component and has a CVSS v3.1 base score of 7.8 (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H). The vulnerability is associated with CWE-732 (Incorrect Permission Assignment for Critical Resource) and NVD-CWE-noinfo.

A local attacker with low privileges can exploit this vulnerability due to its low attack complexity and lack of required user interaction. Successful exploitation enables elevation of privileges within the Secure Kernel mode, resulting in high impacts to confidentiality, integrity, and availability.

The Microsoft Security Response Center provides guidance on this vulnerability, including patches and mitigation details, in its update guide at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21325.

Details

CWE(s): CWE-732NVD-CWE-noinfo

Affected Products

microsoft

windows 10 21h2

≤ 10.0.19044.5371

microsoft

windows 10 22h2

≤ 10.0.19045.5371

microsoft

windows 11 22h2

≤ 10.0.22621.4751

microsoft

windows 11 23h2

≤ 10.0.22631.4751

microsoft

windows 11 24h2

≤ 10.0.26100.2894

microsoft

windows server 2025

≤ 10.0.26100.2894

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21325
Vendor Advisory · secure@microsoft.com