CVE-2025-21207
Published: 14 January 2025
Summary
CVE-2025-21207 is a high-severity Uncontrolled Resource Consumption (CWE-400) vulnerability in Microsoft Windows 10 1809. Its CVSS base score is 7.5 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Application or System Exploitation (T1499.004); ranked in the top 25.3% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SC-5 (Denial-of-service Protection) and SC-6 (Resource Availability).
Threat & Defense at a Glance
Threat & Defense Details
Mitigating Controls (NIST 800-53 r5)AI
Directly remediates the uncontrolled resource consumption flaw in CDPsvc through timely patching or vendor-recommended mitigations.
Implements denial-of-service protections at network entry points to block or limit remote resource exhaustion exploits against CDPsvc.
Protects system resource availability by allocating limits and dedicated resources to prevent excessive consumption by unauthenticated remote attackers targeting CDPsvc.
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Direct remote exploitation of the CDPsvc vulnerability to trigger resource exhaustion or crash, matching Endpoint DoS via Application or System Exploitation.
NVD Description
Windows Connected Devices Platform Service (Cdpsvc) Denial of Service Vulnerability
Deeper analysisAI
CVE-2025-21207 is a Denial of Service vulnerability affecting the Windows Connected Devices Platform Service (CDPsvc). Published on 2025-01-14, it is classified under CWE-400 (Uncontrolled Resource Consumption) and NVD-CWE-noinfo, with a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).
An unauthenticated attacker with network access can exploit this vulnerability remotely with low attack complexity and no user interaction required. Successful exploitation results in high impact to availability (A:H), potentially causing the CDPsvc to crash or consume excessive resources, leading to denial of service on the affected Windows system, while having no impact on confidentiality or integrity.
The Microsoft Security Response Center advisory at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21207 provides guidance on mitigation for this vulnerability.
Details
- CWE(s)