CVE-2025-21178

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jan 14, 2025
CWE ID 125
CWE ID 122

Summary

CVE-2025-21178 is a newly disclosed vulnerability affecting Microsoft Visual Studio. This issue permits an attacker to execute arbitrary code remotely, allowing for potential malicious activity. The vulnerability is located in the Remote Debugging Service of Visual Studio and can be exploited through a specially crafted debugging packet. Successful exploitation may lead to significant security risks, including data theft, system compromise, and unauthorized access. Microsoft has released a patch to address this vulnerability and urges users to apply it promptly to safeguard their systems.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share