CVE-2025-21371
Published: 11 February 2025
Description
Windows Telephony Service Remote Code Execution Vulnerability
Security Summary
CVE-2025-21371 is a Remote Code Execution vulnerability in the Windows Telephony Service. Published on 2025-02-11T18:15:35.540, it carries a CVSS v3.1 base score of 8.8 (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) and is associated with CWE-122 and NVD-CWE-noinfo.
A remote unauthenticated attacker can exploit this vulnerability over the network with low complexity by tricking a user into some interaction, such as clicking a malicious link or opening a file. Successful exploitation enables arbitrary code execution in the context of the service, resulting in high impacts to confidentiality, integrity, and availability, potentially leading to full system compromise.
Microsoft's update guide at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21371 provides details on patching. Vicarius offers a detection script at https://www.vicarius.io/vsociety/posts/windows-telephony-service-remote-code-execution-vulnerability-detection-script and a mitigation script at https://www.vicarius.io/vsociety/posts/windows-telephony-service-remote-code-execution-vulnerability-mitigation-script.
Details
- CWE(s)