CVE-2025-21330
Published: 14 January 2025
Summary
CVE-2025-21330 is a high-severity Uncontrolled Resource Consumption (CWE-400) vulnerability in Microsoft Windows 10 1809. Its CVSS base score is 7.5 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Application or System Exploitation (T1499.004); ranked in the top 20.0% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SC-5 (Denial-of-service Protection) and SC-6 (Resource Availability).
Threat & Defense at a Glance
Threat & Defense Details
Mitigating Controls (NIST 800-53 r5)AI
SI-2 requires timely flaw remediation including patching the specific Windows Remote Desktop Services vulnerability, directly eliminating the uncontrolled resource consumption issue.
SC-5 implements denial-of-service protections at network entry points to block unauthenticated remote attacks exploiting the RDS DoS vulnerability.
SC-6 enforces resource allocation policies and monitors for exhaustion conditions to mitigate CWE-400 uncontrolled resource consumption in Remote Desktop Services.
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
The vulnerability is a remote unauthenticated DoS in Windows Remote Desktop Services via resource exhaustion (CWE-400), directly enabling T1499.004 (Application or System Exploitation) to crash/deny availability of the service.
NVD Description
Windows Remote Desktop Services Denial of Service Vulnerability
Deeper analysisAI
CVE-2025-21330 is a Denial of Service vulnerability in Windows Remote Desktop Services. Published on 2025-01-14, it carries a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) and is associated with CWE-400 (Uncontrolled Resource Consumption) as well as NVD-CWE-noinfo.
Unauthenticated attackers on the network can exploit this vulnerability with low attack complexity and no user interaction required. Successful exploitation results in a high impact to availability, enabling denial of service against the affected Remote Desktop Services component without compromising confidentiality or integrity.
The Microsoft Security Response Center advisory at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21330 provides details on mitigation and available patches.
Details
- CWE(s)