URL has been copied successfully!
CVE-2025-24054 Under Active Attack”, Steals NTLM Credentials on File Download
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

CVE-2025-24054 Under Active Attack”, Steals NTLM Credentials on File Download


Tags: , , , , , , , , , , ,

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a medium-severity security flaw impacting Microsoft Windows to its Known Exploited Vulnerabilities (KEV) catalog, following reports of active exploitation in the wild.The vulnerability, assigned the CVE identifier CVE-2025-24054 (CVSS score: 6.5), is a Windows New Technology LAN Manager (NTLM) hash disclosure

First seen on thehackernews.com

Jump to article: thehackernews.com/2025/04/cve-2025-24054-under-active.html

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Who’s Afraid of a Toxic Cloud Trilogy?
  2. U.S. CISA adds Microsoft Windows CLFS driver flaw to its Known Exploited Vulnerabilities catalog
  3. Cisco, Hitachi, Microsoft, and Progress Flaws Actively Exploited”, CISA Sounds Alarm
  4. U.S. CISA adds Gladinet CentreStack and ZTA Microsoft Windows Common Log File System (CLFS) Driver flaws to its Known Exploited Vulnerabilities catalog