Happy #PatchTuesday from **Microsoft**: 4 ZERO-DAYS (2 EXPLOITED) out of 56 new CVEs<li><a href="https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21377"; target="_blank" rel="nofollow noopener">CVE-2025-21377</a> (6.5 medium) NTLM Hash Disclosure Spoofing Vulnerability (PUBLICLY DISCLOSED)</li><li><a href="https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21194"; target="_blank" rel="nofollow noopener">CVE-2025-21194</a> (7.1 high) Microsoft Surface Security Feature Bypass Vulnerability (PUBLICLY DISCLOSED)</li><li><a href="https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21418"; target="_blank" rel="nofollow noopener">CVE-2025-21418</a> (7.8 high) Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability (<strong>EXPLOITED</strong>)</li><li><a href="https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21391"; target="_blank" rel="nofollow noopener">CVE-2025-21391</a> (7.1 high) Windows Storage Elevation of Privilege Vulnerability (<strong>EXPLOITED</strong>)</li>
#microsoft #zeroday #cve #eitw #activeexploitation #vulnerability #infosec #cybersecurity
Not Simon 🐐
npub14g…xznd6
2025-02-11 18:07:12 UTC
in reply to nevent1q…guq7
Author Public Key
npub14g0mj0fmn0sepfuhp2wupyk7d8xyz7rezpmrx2gfsav9vxlwxypq4xznd6Seen on
wss://relay.momostr.pinkPublished at
2025-02-11 18:07:12 UTCEvent JSON
{
"id": "211ed11b6207394ee61b4ee6135ada7f2e83e656a69f53a8405c8c8ec83ac240",
"pubkey": "aa1fb93d3b9be190a7970a9dc092de69cc41787910763329098758561bee3102",
"created_at": 1739297232,
"kind": 1,
"tags": [
[
"e",
"31fe37ea949b57016a89374d925f929ecde46d422c5a8766798f44cca5e9704a",
"",
"root",
"aa1fb93d3b9be190a7970a9dc092de69cc41787910763329098758561bee3102"
],
[
"e",
"71d04e4990009ac0502721a3c046e38944a37ef6ed147b1f4836236f62841417",
"",
"reply",
"aa1fb93d3b9be190a7970a9dc092de69cc41787910763329098758561bee3102"
],
[
"t",
"cve"
],
[
"t",
"eitw"
],
[
"t",
"activeexploitation"
],
[
"proxy",
"https://infosec.exchange/@screaminggoat/113986583418117641",
"web"
],
[
"t",
"vulnerability"
],
[
"t",
"patchtuesday"
],
[
"t",
"infosec"
],
[
"p",
"aa1fb93d3b9be190a7970a9dc092de69cc41787910763329098758561bee3102"
],
[
"t",
"cybersecurity"
],
[
"t",
"zeroday"
],
[
"t",
"microsoft"
],
[
"proxy",
"https://infosec.exchange/users/screaminggoat/statuses/113986583418117641",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://infosec.exchange/users/screaminggoat/statuses/113986583418117641",
"pink.momostr"
],
[
"-"
]
],
"content": "Happy #PatchTuesday from **Microsoft**: 4 ZERO-DAYS (2 EXPLOITED) out of 56 new CVEs\u003cli\u003e\u003ca href=\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21377\" target=\"_blank\" rel=\"nofollow noopener\"\u003eCVE-2025-21377\u003c/a\u003e (6.5 medium) NTLM Hash Disclosure Spoofing Vulnerability (PUBLICLY DISCLOSED)\u003c/li\u003e\u003cli\u003e\u003ca href=\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21194\" target=\"_blank\" rel=\"nofollow noopener\"\u003eCVE-2025-21194\u003c/a\u003e (7.1 high) Microsoft Surface Security Feature Bypass Vulnerability (PUBLICLY DISCLOSED)\u003c/li\u003e\u003cli\u003e\u003ca href=\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21418\" target=\"_blank\" rel=\"nofollow noopener\"\u003eCVE-2025-21418\u003c/a\u003e (7.8 high) Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability (\u003cstrong\u003eEXPLOITED\u003c/strong\u003e)\u003c/li\u003e\u003cli\u003e\u003ca href=\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21391\" target=\"_blank\" rel=\"nofollow noopener\"\u003eCVE-2025-21391\u003c/a\u003e (7.1 high) Windows Storage Elevation of Privilege Vulnerability (\u003cstrong\u003eEXPLOITED\u003c/strong\u003e)\u003c/li\u003e\n\n#microsoft #zeroday #cve #eitw #activeexploitation #vulnerability #infosec #cybersecurity",
"sig": "bb927ea2e7f436d3040ffcf44538be886756ef1e1d448a861c2fc99c76cf16e61cb71d3de8b0218aeb8e7e986857e71bc379c5ef05af8a2ddd3c0e8546edfbfb"
}