CVE-2025-21189

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Jan 14, 2025
CWE ID 41

Summary

CVE-2025-21189 is a MapUrlToZone Security Feature bypass vulnerability. This issue allows an attacker to bypass the security feature, potentially exposing an organization's DNS infrastructure to malicious URLs. The vulnerability could lead to data exfiltration or the installation of malware. It is crucial for affected organizations to apply the necessary patches or mitigations to prevent exploitation. Failure to address this vulnerability could result in significant security risks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Windows Server 2008

Affected Vendors

  • Microsoft