CVE-2025-21263

CVSS 3.1 Score 6.6 of 10 (medium)

Details

Published Jan 14, 2025
CWE ID 125

Summary

CVE-2025-21263 is a newly disclosed vulnerability affecting Windows Digital Media. This elevation of privilege issue allows an attacker to gain higher system privileges by exploiting a weakness in the software. Successful exploitation could result in the execution of arbitrary code and potential takeover of the affected system. Microsoft has released a patch to mitigate this vulnerability, and it is strongly recommended that users install it as soon as possible to protect against potential attacks. The exact cause of the vulnerability is not yet publicly disclosed, but users should be vigilant for potential exploit attempts and maintain robust security practices.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Windows Server 2008

Affected Vendors

  • Microsoft