CVE-2025-21369 – Microsoft IIS Digest Authentication Remote Code Execution
The following table lists the changes that have been made to the CVE-2025-21369 vulnerability over time.
Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics.
-
New CVE Received by [email protected]
Feb. 11, 2025
Action Type Old Value New Value Added Description Microsoft Digest Authentication Remote Code Execution Vulnerability Added CVSS V3.1 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Added CWE CWE-190 Added CWE CWE-122 Added Reference https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21369