CNNVD-202508-1244 Information
CNNVD ID
CNNVD-202508-1244
Related CVE
- CNNVD Published: 2025-08-12
Description (Chinese)
Microsoft Windows Kerberos是美国微软(Microsoft)公司的一个用于在网络集群中进行身份验证的软件。Kerberos 同时作为一种网络认证协议,其设计目标是通过密钥系统为客户机/服务器应用程序提供强大的认证服务。 Microsoft Windows Kerberos存在安全漏洞。攻击者利用该漏洞可以提升权限。以下产品和版本受到影响:Windows Server 2025 (Server Core installation),Windows Server 2025。
Description (English)
Microsoft Windows Kerberos is a software used by Microsoft USA for authentication in network clusters. Kerberos is also serving as a web authentication protocol designed to provide a robust authentication service for client/server applications through a key system. Microsoft Windows Kerberos has a security gap. The attackers use this loophole to enhance their authority. The following products and versions were affected: Windows Server 2025 (Server Core integration), Windows Server 2025.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
微软
Published
2025-08-12
Last Modified
2026-02-24
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53779 https://nvd.nist.gov/vuln/detail/CVE-2025-53779
Patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53779
Share on: