CVE-2025-21333
HIGH
7,8
Source: [email protected]
Attack Vector: local
Attack Complexity: low
Privileges Required: low
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
Description
AI Translation Available
Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability
EPSS (Exploit Prediction Scoring System)
Trend Analysis
EPSS (Exploit Prediction Scoring System)
Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.
EPSS Score
0,7674
Percentile
1,0th
Updated
EPSS Score Trend (Last 90 Days)
122
Heap-based Buffer Overflow
DraftCommon Consequences
Security Scopes Affected:
Availability
Integrity
Confidentiality
Access Control
Other
Potential Impacts:
Dos: Crash, Exit, Or Restart
Dos: Resource Consumption (Cpu)
Dos: Resource Consumption (Memory)
Execute Unauthorized Code Or Commands
Bypass Protection Mechanism
Modify Memory
Other
Applicable Platforms
Languages:
C, C++, Memory-Unsafe
Exploit
Microsoft Windows Server 2025 Hyper-V NT Kernel Integration …
Microsoft Windows Server 2025 Hyper-V NT Kernel Integration VSP - Elevation of Privilege
View Exploit Code →
Operating System
Windows 10 22H2 by Microsoft
Version Range Affected
To
10.0.19045.5371
(exclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:x64:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 11 23H2 by Microsoft
Version Range Affected
To
10.0.22631.4751
(exclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_11_23h2:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows Server 2025 by Microsoft
Version Range Affected
To
10.0.26100.2894
(exclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:x64:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 11 24H2 by Microsoft
Version Range Affected
To
10.0.26100.2894
(exclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_11_24h2:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows Server 2022 23H2 by Microsoft
Version Range Affected
To
10.0.25398.1369
(exclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_server_2022_23h2:*:*:*:*:*:*:x64:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 21H2 by Microsoft
Version Range Affected
To
10.0.19044.5371
(exclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:x64:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 11 22H2 by Microsoft
Version Range Affected
To
10.0.22621.4751
(exclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025…
https://www.exploit-db.com/exploits/52436
https://www.vicarius.io/vsociety/posts/cve-2025-21333-elevated-privilege-exposu…
https://www.vicarius.io/vsociety/posts/cve-2025-21333-elevated-privilege-exposu…
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21333