Denial of Service Vulnerability in Windows Netlogon by Microsoft
CVE-2025-49716

7.5HIGH

Key Information:

Vendor

Microsoft
Status
Windows Server 2008 R2 Service Pack 1
Windows Server 2008 R2 Service Pack 1 (server Core Installation)
Windows Server 2008 Service Pack 2
Windows Server 2008 Service Pack 2 (server Core Installation)
Vendor
CVE Published:
8 July 2025

What is CVE-2025-49716?

The vulnerability in Windows Netlogon allows unauthorized attackers to exploit uncontrolled resource consumption, potentially leading to a denial of service. This flaw can be utilized to disrupt network services, affecting the availability and performance of connected systems. It is vital for organizations using Windows Netlogon to implement security measures to protect against such unauthorized access and ensure uninterrupted service.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Windows Server 2008 R2 Service Pack 1 (Server Core installation) x64-based Systems 6.1.7601.0 < 6.1.7601.27820

Windows Server 2008 R2 Service Pack 1 x64-based Systems 6.1.7601.0 < 6.1.7601.27820

Windows Server 2008 Service Pack 2 (Server Core installation) 32-bit Systems 6.0.6003.0 < 6.0.6003.23418

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...
vendor-advisorypatch

EPSS Score

22% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.