What is the severity of CVE-2025-21325?

CVE-2025-21325 is classified as an elevation of privilege vulnerability affecting certain Windows operating systems.

How do I fix CVE-2025-21325?

To fix CVE-2025-21325, apply the latest security updates provided by Microsoft for your affected Windows version.

Which Windows versions are affected by CVE-2025-21325?

CVE-2025-21325 affects multiple versions of Windows, including Windows 10, Windows 11, and Windows Server 2025.

Can CVE-2025-21325 be exploited remotely?

CVE-2025-21325 requires local access to the affected system to be exploited effectively.

What are the potential impacts of CVE-2025-21325?

The potential impact of CVE-2025-21325 includes unauthorized access and privileges that could allow attackers to execute arbitrary code in kernel mode.

Vulnerability/
CVE-2025-21325

high

7.8

CWE

732

EPSS

0.043%

16/1/2025

17/1/2025

21/2/2025

CVE-2025-21325: Windows Secure Kernel Mode Elevation of Privilege Vulnerability

First published: Thu Jan 16 2025(Updated: )

Windows Secure Kernel Mode Elevation of Privilege Vulnerability

Credit: secure@microsoft.com

Affected Software	Affected Version	How to fix
Microsoft Windows 10	=21H2	fix available externally
Microsoft Windows 11	=24H2	fix available externally
Microsoft Windows 11	=22H2	fix available externally
Microsoft Windows 10	=21H2	fix available externally
Microsoft Windows 11	=22H2	fix available externally
Microsoft Windows 10	=22H2	fix available externally
Microsoft Windows Server 2025		fix available externally
Microsoft Windows 10	=22H2	fix available externally
Microsoft Windows 11	=24H2	fix available externally
Microsoft Windows 11	=23H2	fix available externally
Microsoft Windows 11	=23H2	fix available externally
Microsoft Windows 10	=21H2	fix available externally
Microsoft Windows 10	=22H2	fix available externally
Microsoft Windows Server 2025
Microsoft Windows 10 21h2	<10.0.19044.5371
Microsoft Windows 10 22h2	<10.0.19045.5371
Microsoft Windows 11 22h2	<10.0.22621.4751
Microsoft Windows 11 23h2	<10.0.22631.4751
Microsoft Windows 11 Home Edition	<10.0.26100.2894
Microsoft Windows Server 2025	<10.0.26100.2894
Microsoft Windows Server 2025		fix available externally

Never miss a vulnerability like this again

Reference Links

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21325 (Advisory)

Frequently Asked Questions

What is the severity of CVE-2025-21325?
CVE-2025-21325 is classified as an elevation of privilege vulnerability affecting certain Windows operating systems.
How do I fix CVE-2025-21325?
To fix CVE-2025-21325, apply the latest security updates provided by Microsoft for your affected Windows version.
Which Windows versions are affected by CVE-2025-21325?
CVE-2025-21325 affects multiple versions of Windows, including Windows 10, Windows 11, and Windows Server 2025.
Can CVE-2025-21325 be exploited remotely?
CVE-2025-21325 requires local access to the affected system to be exploited effectively.
What are the potential impacts of CVE-2025-21325?
The potential impact of CVE-2025-21325 includes unauthorized access and privileges that could allow attackers to execute arbitrary code in kernel mode.

agent/references
agent/type
agent/title
collector/msrc-cve
source/Microsoft
agent/software-canonical-lookup
agent/description
agent/first-publish-date
collector/msrc
agent/severity
agent/weakness
agent/author
agent/source
agent/tags
collector/epss-latest
source/FIRST
agent/epss
collector/mitre-cve
source/MITRE
collector/nvd-api
source/NVD
agent/last-modified-date
agent/softwarecombine
agent/event
vendor/microsoft
canonical/microsoft windows 10
version/microsoft windows 10/21h2
canonical/microsoft windows 11
version/microsoft windows 11/24h2
version/microsoft windows 11/22h2
canonical/microsoft windows server 2025
version/microsoft windows 10/22h2
version/microsoft windows 11/23h2
canonical/microsoft windows 10 21h2
canonical/microsoft windows 10 22h2
canonical/microsoft windows 11 22h2
canonical/microsoft windows 11 23h2
canonical/microsoft windows 11 home edition