Logic Error in Falcon Sensor for Windows by CrowdStrike
CVE-2025-42706

6.5MEDIUM

Key Information:

Vendor: Crowdstrike
Status: Falcon Sensor For Windows
Vendor: CVE Published:; 8 October 2025

🔔 Create Crowdstrike Vulnerability Alert

What is CVE-2025-42706?

A logic error has been identified in the Falcon sensor for Windows that can be exploited by attackers with prior code execution capability to delete arbitrary files from a host system. This vulnerability affects Falcon sensor for Windows versions 7.24 and later, along with all Long Term Visibility (LTV) sensor versions. CrowdStrike has addressed this issue with a security fix to mitigate the risk of exploitation. While there is currently no evidence of real-world exploitation, CrowdStrike's threat hunting and intelligence teams are actively monitoring for any attempts. Notably, the Falcon sensors for Mac, Linux, and Legacy Systems are unaffected by this vulnerability. The issue was reported through CrowdStrike's HackerOne bug bounty program by researcher Cong Cheng.

Affected Version(s)

Falcon sensor for Windows Windows 7.28 < 7.28.20008

Falcon sensor for Windows Windows 7.27 < 7.27.19909

Falcon sensor for Windows Windows 7.26 < 7.26.19813

References

https://www.crowdstrike.com/en-us/security-advisories/iss...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 8, 2025
Vulnerability Reserved
Apr 16, 2025

JSON