CVE-2025-21277
Published: 14 January 2025
Summary
CVE-2025-21277 is a high-severity Buffer Over-read (CWE-126) vulnerability in Microsoft Windows 10 1507. Its CVSS base score is 7.5 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 3.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SC-5 (Denial-of-service Protection) and SC-6 (Resource Availability).
Deeper analysis
Microsoft Message Queuing (MSMQ) contains a denial-of-service vulnerability tracked as CVE-2025-21277. The flaw is present in the MSMQ component of affected Microsoft Windows systems and carries a CVSS 3.1 base score of 7.5, reflecting a network-accessible attack that requires no authentication or user interaction and results in high impact to availability. The associated weakness is listed under CWE-126.
An unauthenticated remote attacker can send specially crafted network messages to an MSMQ service, triggering the denial-of-service condition and disrupting message queuing operations on the target system. The attack requires only low attack complexity and can be launched over the network without any privileges.
The Microsoft Security Response Center advisory for CVE-2025-21277 is available at the published reference URL and contains official guidance on applicable updates. The EPSS score for this CVE has remained flat at 0.3050 since disclosure, indicating no material increase in observed exploitation interest.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-2342
Vulnerability details
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Direct network-exploitable DoS in MSMQ maps to public-facing app exploitation and application/system exploitation for availability impact.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Requires timely remediation of flaws like CVE-2025-21277 through vendor patches, directly eliminating the MSMQ DoS vulnerability.
Implements denial-of-service protections such as rate limiting and traffic filtering to block or limit the unauthenticated network-based MSMQ DoS attacks.
Ensures resource availability for MSMQ by protecting against degradation from DoS exploitation through allocation controls and failover mechanisms.