Denial of Service Vulnerability in Internet Connection Sharing by Microsoft
CVE-2025-21212

6.5MEDIUM

Key Information:

Vendor: Microsoft
Status: Windows 10 Version 1809; Windows Server 2019; Windows Server 2019 (server Core Installation); Windows Server 2022
Vendor: CVE Published:; 11 February 2025

Summary

A vulnerability exists in Internet Connection Sharing (ICS) that could allow an attacker to cause a denial of service condition. This could interrupt the normal operation of network connections for users relying on ICS, potentially leading to loss of connectivity and disruption of services. It is essential for users and system administrators to be aware of this vulnerability and ensure that appropriate security measures are taken to mitigate the risks.

Affected Version(s)

Windows 10 Version 1607 32-bit Systems 10.0.14393.0 < 10.0.14393.7785

Windows 10 Version 1809 32-bit Systems 10.0.17763.0 < 10.0.17763.6893

Windows 10 Version 21H2 32-bit Systems 10.0.19043.0 < 10.0.19044.5487

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...

vendor-advisory

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 11, 2025
Vulnerability Reserved
Dec 5, 2024