EXECUTIVE SUMMARY:
Microsoft disclosed a critical Remote Code Execution (RCE) vulnerability CVE-2025-21376 in Windows' LDAP implementation, allowing attackers to execute arbitrary code remotely without user interaction. This "wormable" flaw, caused by multiple weaknesses, has a CVSS base score of 8.1 and could be exploited via a specially crafted request to a vulnerable LDAP server. While no public exploits exist yet, the vulnerability is considered highly exploitable and could spread rapidly across networks. Microsoft has released security updates for affected systems, including Windows Server 2019 and Windows 10 Version 1809, and users are urged to apply patches immediately to mitigate risks.[/subscribe_to_unlock_form]
EXECUTIVE SUMMARY:
Microsoft disclosed a critical Remote Code Execution (RCE) vulnerability CVE-2025-21376 in Windows' LDAP implementation, allowing attackers to execute arbitrary code remotely without user interaction. This "wormable" flaw, caused by multiple weaknesses, has a CVSS base score of 8.1 and could be exploited via a specially crafted request to a vulnerable LDAP server. While no public exploits exist yet, the vulnerability is considered highly exploitable and could spread rapidly across networks. Microsoft has released security updates for affected systems, including Windows Server 2019 and Windows 10 Version 1809, and users are urged to apply patches immediately to mitigate risks.[emaillocker id="1283"]
RECOMMENDATION:
We recommend you to refer to this below mentioned link to apply patches:
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-21376#securityUpdates
REFERENCES:
The following reports contain further technical details:
https://cybersecuritynews.com/wormable-windows-ldap-vulnerability/