April 24, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
DocSwap Malware Masquerades as Security Document Viewer to Target Android Users Globally – Active IOCs
March 19, 2025RedLine Stealer – Active IOCs
March 20, 2025DocSwap Malware Masquerades as Security Document Viewer to Target Android Users Globally – Active IOCs
March 19, 2025RedLine Stealer – Active IOCs
March 20, 2025
Severity
High
Analysis Summary
CVE-2025-24071
Microsoft Windows could allow a remote attacker to conduct spoofing attacks, caused by exposure of sensitive information to an unauthorized actor.
Impact
- Gain Access
Indicators of Compromise
CVE
CVE-2025-24071
Affected Vendors
- Microsoft
Affected Products
- Microsoft Windows 10 Version 1809 - 10.0.17763.0
- Microsoft Windows Server 2019 - 10.0.17763.0
- Microsoft Windows Server 2019 (Server Core installation) - 10.0.17763.0
- Microsoft Windows Server 2022 - 10.0.20348.0
- Microsoft Windows 11 version 22H2 - 10.0.22621.0
- Microsoft Windows 10 Version 22H2 - 10.0.19045.0
- Microsoft Windows Server 2025 (Server Core installation) - 10.0.26100.0
- Microsoft Windows 11 version 22H3 - 10.0.22631.0
- Microsoft Windows Server 2012 R2 - 6.3.9600.0
- Microsoft Windows Server 2012 R2 (Server Core installation) - 6.3.9600.0
- Microsoft Windows 11 Version 23H2 - 10.0.22631.0
- Microsoft Windows 11 Version 24H2 - 10.0.26100.0
- Microsoft Windows Server 2016 - 10.0.14393.0
- Microsoft Windows Server 2016 (Server Core installation) - 10.0.14393.0
- Microsoft Windows 10 Version 21H2 - 10.0.19043.0
- Microsoft Windows Server 2025 - 10.0.26100.0
- Microsoft Windows 10 Version 1507 - 10.0.10240.0
- Microsoft Windows 10 Version 1607 - 10.0.14393.0
Remediation
Refer to Microsoft Security Update Guide for patch, upgrade, or suggested workaround information.
