Share:

CVE-2025-21295

Critical 8.1

SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution Vulnerability

Published January 14, 2025.

Affected software

Microsoft Windows 11 24h2

Microsoft Windows 10 21h2

Microsoft Windows Server 2016

Microsoft Windows 11 22h2

Microsoft Windows 10 22h2

Microsoft Windows Server 2022 23h2

Microsoft Windows Server 2008

Microsoft Windows 10 1507

Microsoft Windows Server 2012

Microsoft Windows 10 1809

Microsoft Windows Server 2022

Microsoft Windows 11 23h2

Microsoft Windows Server 2019

Microsoft Windows Server 2025

Microsoft Windows 10 1607

Get alerts for Microsoft Windows 11 24h2

Reference links

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21295