Request a Demo
Rewterz
Mirai Botnet aka Katana – Active IOCs
November 5, 2025
Rewterz
ICS: Multiple Fuji Electric Monitouch V-SFT-6 Vulnerabilities
November 5, 2025

Multiple Microsoft Windows Products Vulnerabilities

Severity

Medium

Analysis Summary

CVE-2025-55340 CVSS:7

Improper authentication in Windows Remote Desktop Protocol allows an authorized attacker to bypass a security feature locally.

CVE-2025-59202 CVSS:7

Use after free in Windows Remote Desktop Services allows an authorized attacker to elevate privileges locally.

CVE-2025-55700 CVSS:6.5

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

CVE-2025-58717 CVSS:6.5

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

CVE-2025-59190 CVSS:5.5

Improper input validation in Microsoft Windows Search Component allows an unauthorized attacker to deny service locally.

CVE-2025-59198 CVSS:5

Improper input validation in Microsoft Windows Search Component allows an unauthorized attacker to deny service locally.

CVE-2025-59253 CVSS:5.5

Improper access control in Microsoft Windows Search Component allows an authorized attacker to deny service locally.

Impact

  • Denial of Service
  • Security Bypass
  • Privilege Escalation
  • Information Disclosure

Indicators of Compromise

CVE

  • CVE-2025-55340
  • CVE-2025-59202
  • CVE-2025-55700
  • CVE-2025-58717
  • CVE-2025-59190
  • CVE-2025-59198
  • CVE-2025-59253

Affected Vendors

  • Microsoft

Affected Products

  • Microsoft Windows 10 Version 1607 for 32-bit Systems
  • Microsoft Windows 10 Version 1607 for x64-based Systems
  • Microsoft Windows 10 Version 1809 for 32-bit Systems
  • Microsoft Windows 10 Version 1809 for x64-based Systems
  • Microsoft Windows Server 2019 (Server Core installation)
  • Microsoft Windows Server 2022 (Server Core installation)
  • Microsoft Windows Server 2016 (Server Core installation)
  • Microsoft Windows Server 2025
  • Microsoft Windows 11 Version 24H2 for x64-based Systems
  • Microsoft Windows 11 Version 24H2 for ARM64-based Systems
  • Microsoft Windows 11 Version 23H2 for x64-based Systems
  • Microsoft Windows 11 Version 23H2 for ARM64-based Systems
  • Microsoft Windows Server 2025 (Server Core installation)
  • Microsoft Windows 10 Version 22H2 for x64-based Systems
  • Microsoft Windows 11 Version 22H2 for x64-based Systems
  • Microsoft Windows 11 Version 22H2 for ARM64-based Systems
  • Microsoft Windows 10 Version 21H2 for x64-based Systems
  • Microsoft Windows 10 Version 22H2 for 32-bit Systems
  • Microsoft Windows 10 Version 22H2 for ARM64-based Systems
  • Microsoft Windows 10 Version 21H2 for ARM64-based Systems
  • Microsoft Windows Server 2022 - 23H2 Edition (Server Core installation)
  • Microsoft Windows 11 Version 25H2 for ARM64-based Systems
  • Microsoft Windows 11 Version 25H2 for x64-based Systems

Remediation

Use Microsoft Automatic Update to apply the appropriate patch for your system, or the Microsoft Security Update Guide to search for available patches.

CVE-2025-55340

CVE-2025-59202

CVE-2025-55700

CVE-2025-58717

CVE-2025-59190

CVE-2025-59198

CVE-2025-59253