Cyber Resilience

CVE-2025-53145

High

Published: 12 August 2025

Published
12 August 2025
Modified
18 August 2025
KEV Added
Patch
CVSS Score v3.1 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.2284 96.0th percentile
Risk Priority 31 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-53145 is a high-severity Type Confusion (CWE-843) vulnerability in Microsoft Windows Server 2008. Its CVSS base score is 8.8 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation of Remote Services (T1210); ranked in the top 4.0% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 CM-7 (Least Functionality) and SI-2 (Flaw Remediation).

Deeper analysis

CVE-2025-53145 is a type confusion vulnerability (CWE-843) affecting Windows Message Queuing. The flaw permits an attacker to access a resource using an incompatible type, which can be leveraged to corrupt memory or alter control flow within the queuing service.

An authorized attacker with network access can exploit the issue without user interaction. Successful exploitation grants the ability to execute arbitrary code with the privileges of the affected service, resulting in full compromise of confidentiality, integrity, and availability on the target system.

The Microsoft Security Response Center advisory at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53145 supplies official guidance, including available patches and recommended mitigations for the affected Windows versions.

The associated EPSS score stands at 0.2284 with no material change from its recorded peak, indicating moderate but stable exploitation interest since disclosure.

EU & UK References

Vulnerability details

Access of resource using incompatible type ('type confusion') in Windows Message Queuing allows an authorized attacker to execute code over a network.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1210 Exploitation of Remote Services Lateral Movement
Adversaries may exploit remote services to gain unauthorized access to internal systems once inside of a network.
Why these techniques?

Type confusion in MSMQ service directly enables remote code execution by an authenticated low-privileged attacker over the network.

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2025-53143Same product: Microsoft Windows 10 1507
CVE-2025-53144Same product: Microsoft Windows 10 1507
CVE-2025-21250Same product: Microsoft Windows 10 1507
CVE-2025-21282Same product: Microsoft Windows 10 1507
CVE-2025-21200Same product: Microsoft Windows 10 1507
CVE-2025-21306Same product: Microsoft Windows 10 1507
CVE-2025-21236Same product: Microsoft Windows 10 1507
CVE-2025-21295Same product: Microsoft Windows 10 1507
CVE-2025-21246Same product: Microsoft Windows 10 1507
CVE-2025-21376Same product: Microsoft Windows 10 1507

Affected Assets

microsoft
windows 10 1507
≤ 10.0.10240.21100 · ≤ 10.0.10240.21100
microsoft
windows 10 1607
≤ 10.0.14393.8330 · ≤ 10.0.14393.8330
microsoft
windows 10 1809
≤ 10.0.17763.7678 · ≤ 10.0.17763.7678
microsoft
windows 10 21h2
≤ 10.0.19044.6216
microsoft
windows 10 22h2
≤ 10.0.19045.6216
microsoft
windows 11 22h2
≤ 10.0.22621.5768
microsoft
windows 11 23h2
≤ 10.0.22631.5768
microsoft
windows 11 24h2
≤ 10.0.26100.4851
microsoft
windows server 2008
all versions, r2
microsoft
windows server 2012
all versions, r2
+5 more product configuration(s) — see NVD for full list

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly mitigates CVE-2025-53145 by requiring timely application of vendor patches as detailed in the MSRC update guide.

prevent

Restricts or disables unnecessary functionality like Windows Message Queuing to eliminate exposure to this network-service vulnerability.

prevent

Implements memory safeguards such as DEP and ASLR that impede arbitrary code execution from type confusion exploits.

References