CVE-2025-21418
HIGH KEVWindows Ancillary Function Driver for WinSock - Elevation of Privilege
Title source: llmExploitation Summary
CVE-2025-21418 is actively exploited and listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, added February 11, 2025.
Description
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
References (2)
Core 2
Core References
US Government Resource
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-21418
Patch, Vendor Advisory vendor-advisory
patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21418
Scores
CVSS v3
7.8
EPSS
0.1029
EPSS Percentile
93.4%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
active
Automatable
no
Technical Impact
total
Details
CISA KEV
2025-02-11
VulnCheck KEV
2025-02-11
ENISA EUVD
EUVD-2025-2476
CWE
CWE-122
Status
published
Products (16)
microsoft/windows_10_1607
< 10.0.10240.20915 (2 CPE variants)
microsoft/windows_10_1809
< 10.0.17763.6893 (2 CPE variants)
microsoft/windows_10_21h2
< 10.0.19044.5487
microsoft/windows_10_22h2
< 10.0.19045.5487
microsoft/windows_11_22h2
< 10.0.22621.4890
microsoft/windows_11_23h2
< 10.0.22631.4890
microsoft/windows_11_24h2
< 10.0.26100.3107
microsoft/windows_server_2008
microsoft/windows_server_2008
r2 sp1
microsoft/windows_server_2012
... and 6 more
Published
Feb 11, 2025
KEV Added
Feb 11, 2025
Tracked Since
Feb 18, 2026