CVE-2025-21376HIGH 8.1EPSS p94.4%

CVE-2025-21376CVE-2025-21376

Description

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

Scoring

CVSS 3.18.1 (HIGH)
VectorCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS8.61% probability of exploitation · percentile 94.4% · 2026-06-18T12:00:27Z
Published2025-02-11
Last modified2025-02-26

Underlying weaknesses· 3

CWE-122CWE-191CWE-362

References

  1. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21376

3

TypeTargetConfidenceTier
WeaknessHeap-based Buffer Overflowcwe-1220%live
WeaknessInteger Underflow (Wrap or Wraparound)cwe-1910%live
WeaknessConcurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')cwe-3620%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-21368
CVE
CVE-2025-21309
CVE
CVE-2025-21369
CVE
CVE-2025-21311
CVE
CVE-2025-21293
CVE
CVE-2022-26826
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.