← ExploitWatch
HomeExploited Vulnerabilities

CVE-2025-21391 — Actively Exploited: Windows (Microsoft)

Microsoft Windows Storage contains a link following vulnerability that could allow for privilege escalation. This vulnerability could allow an attacker to delete data including data that results in the service being unavailable.

CVE IDCVE-2025-21391
VendorMicrosoft
ProductWindows
Vulnerability nameMicrosoft Windows Storage Link Following Vulnerability
Date added2025-02-11
Remediation due2025-03-04
Known ransomware useUnknown
Required actionApply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
DescriptionMicrosoft Windows Storage contains a link following vulnerability that could allow for privilege escalation. This vulnerability could allow an attacker to delete data including data that results in the service being unavailable.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →