Active Directory Elevation of Privilege Vulnerability in Microsoft Products
CVE-2025-21293

8.8HIGH

Key Information:

Vendor
Microsoft
Status
Windows 10 Version 1809
Windows Server 2019
Windows Server 2019 (server Core Installation)
Windows Server 2022
Vendor
CVE Published:
14 January 2025

Badges

๐Ÿ”ฅ Trending now๐Ÿ“ˆ Trended๐Ÿ“ˆ Score: 4,340๐Ÿ‘พ Exploit Exists๐Ÿ“ฐ News Worthy

What is CVE-2025-21293?

CVE-2025-21293 is a vulnerability found in Microsoftโ€™s Active Directory Domain Services, which is a critical component responsible for identity and access management within Windows environments. This vulnerability allows for the potential elevation of privileges, meaning an attacker could gain unauthorized access and control over user accounts and sensitive resources. The existence of this vulnerability can severely undermine the security posture of organizations, exposing them to intrusions, unauthorized data manipulation, and potential compliance violations.

Technical Details

CVE-2025-21293 is classified as an elevation of privilege vulnerability, which could be exploited under certain conditions within the Active Directory services. The flaw arises from improper handling of requests, allowing malicious actors to gain elevated privileges without appropriate authentication. The technical specifics of this vulnerability highlight weaknesses in permission checks, potentially enabling attackers to manipulate user permissions or impersonate higher-privileged accounts.

Potential impact of CVE-2025-21293

  1. Unauthorized Access: Could allow attackers to gain unauthorized administrative access, enabling them to modify configurations, escalate privileges, or create new accounts with high-level access rights.

  2. Data Breaches: Organizations may face significant data breaches due to unauthorized access to sensitive information, leading to potential regulatory repercussions and loss of customer trust.

  3. System Integrity Compromise: The ability to alter permissions and access controls can compromise the integrity of systems, leading to widespread disruptions, malware infections, or persistent backdoor installation, which could have long-term ramifications for organizational security.

Affected Version(s)

Windows 10 Version 1507 32-bit Systems 10.0.10240.0 < 10.0.10240.20890

Windows 10 Version 1607 32-bit Systems 10.0.14393.0 < 10.0.14393.7699

Windows 10 Version 1809 32-bit Systems 10.0.17763.0 < 10.0.17763.6775

News Articles

favicon imageCybersecurityNews

PoC Exploit Released for Active Directory Domain Services Privilege Escalation Vulnerability

A proof-of-concept (PoC) exploit code has been released for CVE-2025-21293, a critical Active Directory Domain Services Elevation of Privilege vulnerability.

1 day ago

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...
vendor-advisory

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • ๐Ÿ‘พ

    Exploit known to exist

  • ๐Ÿ“ฐ

    First article discovered by CybersecurityNews

  • ๐Ÿ“ˆ

    Vulnerability started trending

  • Vulnerability published

  • Vulnerability Reserved

.