CVE-2025-21335 - Microsoft Windows Hyper-V NT Kernel Integration VSP Use-After-Free Vulnerability

项目:Microsoft

产品:Windows

添加日期:2025-01-14到期日:2025-02-04最后更新:June 21, 2025

漏洞名称

Microsoft Windows Hyper-V NT Kernel Integration VSP Use-After-Free Vulnerability

描述

Microsoft Windows Hyper-V NT Kernel Integration VSP contains a use-after-free vulnerability that allows a local attacker to gain SYSTEM privileges.

已知用于勒索软件活动吗?

Unknown

采集行动

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

其他说明

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-21335

https://nvd.nist.gov/vuln/detail/CVE-2025-21335

相关新闻文章

3 Actively Exploited Zero-Day Flaws Patched in Microsoft's Latest Security UpdateJanuary 15, 2025

Microsoft Rings in 2025 With Record Security UpdateJanuary 14, 2025

Microsoft January 2025 Patch Tuesday fixes 8 zero-days, 159 flawsJanuary 14, 2025

相关 CWE

CWE-416