CVE-2025-53779 HIGH

CVE-2025-53779: Windows Kerberos Elevation of Privilege Vulnerability

Vendor Microsoft

Product Windows Server 2025

Weakness CWE-23

Published August 12, 2025

Last update February 26, 2026

CVSS base score

7.2/10

Attack vector Network

Attack complexity Low

Privileges required High

User interaction None

Confidentiality High

Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C

What the vulnerability does

01Description

Relative path traversal in Windows Kerberos allows an authorized attacker to elevate privileges over a network.

Key dates

August 12, 2025 CVE published

February 26, 2026 Record updated

External resources

Related vulnerabilities

CVE CVE-2025-53779

CWE CWE-23

CVSS 7.2 / HIGH

Vendor Microsoft

Product Windows Server 2025

Affected ≥ 10.0.26100.0 and < 10.0.26100.4946

Vendor Microsoft

Product Windows Server 2025 (Server Core installation)

Affected ≥ 10.0.26100.0 and < 10.0.26100.4946