CVE-2025-21333

Published Jan 14, 2025

Last updated 24 days ago

Exploit knownCVSS high 7.8
Microsoft
Windows

Overview

AI description

Generated using AI and has not been reviewed by Intruder. May contain errors.

CVE-2025-21333 is an elevation of privilege vulnerability found in Windows Hyper-V's NT Kernel Integration VSP (Virtual Switch Port). Successful exploitation allows a low-privileged user on a guest system to execute code on the host system with elevated privileges. Microsoft has confirmed active exploitation of this vulnerability. This vulnerability is one of three related Hyper-V flaws patched by Microsoft in February 2025, the others being CVE-2025-21334 and CVE-2025-21335. These vulnerabilities have a CVSS 3.1 base score of 7.8, indicating a high severity.

Description
Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability
Source
secure@microsoft.com
NVD status
Modified

Risk scores

CVSS 3.1

Type
Secondary
Base score
7.8
Impact score
5.9
Exploitability score
1.8
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity
HIGH

Known exploits

Data from CISA

Vulnerability name
Microsoft Windows Hyper-V NT Kernel Integration VSP Heap-based Buffer Overflow Vulnerability
Exploit added on
Jan 14, 2025
Exploit action due
Feb 4, 2025
Required action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Weaknesses

secure@microsoft.com
CWE-122
nvd@nist.gov
NVD-CWE-noinfo

Social media

Hype score
Not currently trending

  1. CVE-2025-21333 exposes a heap-based buffer overflow in Windows 11’s vkrnlintvsp.sys, risking privilege escalation. Microsoft issued patch KB5050021 on January 14, 2024. 🔒🔧 #WindowsSecurity #BufferOverflow #USA link: https://t.co/VPRoWgaerY https://t.co/WRHSMkZYt3

    @TweetThreatNews

    20 Mar 2025

    22 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. Microsoft corrigió tres vulnerabilidades críticas de Hyper-V en Windows (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335) el 14 de enero de 2025. Estos fallos de escalada de privilegios, explotados activamente, afectan Windows 10, 11 y Server 2022/2025

    @rickbit19

    14 Mar 2025

    31 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  3. 🚨 Vulnerabilidad crítica en Windows Hyper-V permite toma de control del sistema 🔍 CVE-2025-21333 en Windows Hyper-V permite a atacantes con bajos privilegios ejecutar código y tomar control del sistema. 📌 Fuente: Centro de Monitoreo TPX https://t.co/fHQx8WjYJc

    @tpx_Security

    13 Mar 2025

    164 Impressions

    3 Retweets

    2 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. 🚨 Se ha identificado una vulnerabilidad crítica en #Windows (CVE-2025-21333), que afecta el controlador vkrnlintvsp.sys a entornos como Windows Sandbox. Para explotar esta vulnerabilidad, es necesario que Windows Sandbox esté habilitado. Microsoft ya lanzó un parche en enero de

    @SoyITPro

    13 Mar 2025

    830 Impressions

    4 Retweets

    14 Likes

    2 Bookmarks

    0 Replies

    0 Quotes

  5. Top 5 Trending CVEs: 1 - CVE-2024-38063 2 - CVE-2025-21333 3 - CVE-2025-27607 4 - CVE-2025-0337 5 - CVE-2025-27840 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W

    @CVEShield

    10 Mar 2025

    22 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. Hey there, Finally published the article on the exploit for CVE-2025-21333-POC exploit. Here the link to the article: https://t.co/CZKYZpN9Zs

    @MrAle_98

    9 Mar 2025

    25216 Impressions

    117 Retweets

    380 Likes

    170 Bookmarks

    1 Reply

    0 Quotes

  7. #exploit 1. ENOMEM In Linux Kernel https://t.co/1XHJKKb8wb 2. CVE-2025-21333: Heap-based BoF in vkrnlintvsp.sys https://t.co/FQJ9nMMviy 3. Solr server RCE PoC: https://t.co/pRkH8YQmPF

    @ksg93rd

    8 Mar 2025

    66 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  8. Detecting Zero-Day CVE-2025-21333 Privilege Escalation Zero-Day CVE-2025-21333: PoC Drops https://t.co/bLn1IivP10 KQL Code: https://t.co/XoOzi8HFA7 https://t.co/ycvdMKX5ZV

    @0x534c

    6 Mar 2025

    3177 Impressions

    6 Retweets

    52 Likes

    32 Bookmarks

    0 Replies

    0 Quotes

  9. 🦹🏼‍♀️🪰 Villain of the Week 🪰🦹🏼‍♀️ A high-severity vulnerability, CVE-2025-21333, has been identified in Windows Hyper-V NT Kernel Integration Virtualization Service Provider (VSP). The vulnerability has been actively exploited in the wild prior to the release of a patch.

    @vicariusltd

    5 Mar 2025

    66 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  10. آسیب پذیری جدیدی با کد شناسایی CVE-2025-21333 برای محصول Microsoft’s Hyper-V منتشر شده است. دلیل آسیب پذیری ضعف در درایوری با نام vkrnlintvsp.sys می باشد. این آسیب پذیری به هکرها امکان ارتقای سطح دسترسی به یوزر system را می‌دهد. https://t.co/Poz3aKYxT1 https://t.co/J3TklJgkr0

    @AmirHossein_sec

    4 Mar 2025

    15 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  11. Windows Hyper-Vの脆弱性PoCが公開(CVE-2025-21333) #セキュリティ対策Lab #セキュリティ #Security https://t.co/TUwmtMmQEl

    @securityLab_jp

    4 Mar 2025

    57 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  12. A proof-of-concept exploit for a critical Windows Hyper-V vulnerability (CVE-2025-21333) exposes SYSTEM access. CVSS score: 7.8. Microsoft patched it in Jan 2025. Stay secure! 🔒🛡️ #Windows #HyperV #USA link: https://t.co/ekePcJDEae https://t.co/MozkLRtZwV

    @TweetThreatNews

    3 Mar 2025

    80 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  13. Windows Hyper-Vのゼロデイ脆弱性「CVE-2025-21333」のPoCが公開。SYSTEM権限を取得可能な攻撃手法が判明。Microsoftは1月のパッチで修正済みだが、未適用システムは危険。 https://t.co/vlTFpiSluE

    @01ra66it

    3 Mar 2025

    1123 Impressions

    0 Retweets

    24 Likes

    4 Bookmarks

    0 Replies

    0 Quotes

  14. ⚠️ Vulnerability Alert: Windows Hyper-V Zero-Day Vulnerability 📅 Timeline: Disclosure: 2025-01-14, Patch: 2025-01-14 📌 Attribution: Anonymous researcher 🆔cveId: CVE-2025-21333 📊baseScore: 7.8 📏cvssMetrics: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H cvssSeverity: High…

    @syedaquib77

    3 Mar 2025

    45 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  15. Windows Hyper-Vのゼロデイ脆弱性CVE-2025-21333に対応するPoC(攻撃の概念実証コード)が公開された。SYSTEMへの権限昇格。2025年1月の定例更新で修正されたもの。 https://t.co/HdF8rRYjKW

    @__kokumoto

    3 Mar 2025

    1439 Impressions

    7 Retweets

    12 Likes

    7 Bookmarks

    0 Replies

    0 Quotes

  16. Windows Hyper-V Zero-Day CVE-2025-21333: PoC Drops, SYSTEM Access Exposed Explore the CVE-2025-21333 #PoC exploit revealing a zero-day vulnerability in #Windows Hyper-V that allows SYSTEM privilege escalation. https://t.co/RqcG6xPxW0

    @the_yellow_fall

    3 Mar 2025

    12665 Impressions

    68 Retweets

    234 Likes

    80 Bookmarks

    0 Replies

    1 Quote

  17. [1day1line] CVE-2025-21333: Windows Hyper-V Heap Buffer Overflow Vulnerability https://t.co/AJ1x5bb2zN heap buffer overflow vulnerability has been discovered in vkrnlintvsp.sys. This vulnerability can be exploited for privilege escalation, and the PoC utilizes the I/O Ring… htt

    @hackyboiz

    1 Mar 2025

    1774 Impressions

    9 Retweets

    49 Likes

    25 Bookmarks

    0 Replies

    0 Quotes

  18. GitHub - MrAle98/CVE-2025-21333-POC: Poc exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY - https://t.co/IOGfMYLAR1

    @piedpiper1616

    27 Feb 2025

    2359 Impressions

    20 Retweets

    71 Likes

    16 Bookmarks

    0 Replies

    0 Quotes

  19. Developed an exploit for CVE-2025-21333 (quite unreliable): vulnerability in vkrnlintvsp.sys. Exploit code: https://t.co/PU1ZYSefnJ Exploits a paged pool overflow overwriting a _IOP_MC_BUFFER_ENTRY*. Hope you find it useful in case not already shown🙂.

    @MrAle_98

    27 Feb 2025

    18543 Impressions

    71 Retweets

    273 Likes

    116 Bookmarks

    8 Replies

    1 Quote

  20. Actively exploited CVE : CVE-2025-21333

    @transilienceai

    15 Feb 2025

    3 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  21. Actively exploited CVE : CVE-2025-21333

    @transilienceai

    14 Feb 2025

    8 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  22. Actively exploited CVE : CVE-2025-21333

    @transilienceai

    8 Feb 2025

    9 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  23. 🚨 EoP - #Windows #HyperV NT Kernel Integration VSP (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335) exploited in the wild - local attackers can gain SYSTEM privileges. Patch now! #Microsoft ➡️ https://t.co/1M8t70HYoi https://t.co/w4Maeg5Ipy

    @leonov_av

    6 Feb 2025

    4 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  24. Microsoft Patchday: Drei kritische Sicherheitslücken in Hyper-V ausgenutzt Angreifer nutzen aktuell Schwachstellen in der Hyper-V-Virtualisierung, um Windows 10, 11 sowie Windows Server 2022 und 2025 zu kompromittieren. Drei als hochgefährlich eingestufte Lücken (CVE-2025-21333,

    @tec4net

    28 Jan 2025

    22 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  25. Microsoft’s January 2025 Patch Tuesday Addresses 157 CVEs (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335) https://t.co/xGxiZwm4IP https://t.co/NIGZ3YmhVr

    @IT_Peurico

    27 Jan 2025

    17 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  26. 🚨 ALERTE : CVE-2025-21333 sur Windows Hyper-V ! Les hackers pourraient avoir le CONTRÔLE TOTAL du système. Activé par certains utilisateurs en remplacement de VirtualBox/VMware ! 🔓 #CyberSécurité #Windows #HyperV #Hacking #RisqueSécurité #TechNews https://t.co/56xqOBGEyB

    @_F2po_

    27 Jan 2025

    21 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  27. 🚨 ALERT: CVE-2025-21333 in Windows Hyper-V! Hackers could gain FULL SYSTEM CONTROL. Users enable in replacement of VirtualBox/VMware! 🔓 #CyberSecurity #Windows #HyperV #VirtualBox #VMware #Hacking #SecurityRisk #TechNews 🔥 https://t.co/w7PutRdGUu

    @_F2po_

    27 Jan 2025

    22 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  28. 🔒 CVE-2025-21333, CVE-2025-21334 y CVE-2025-21335 ⚠️ Elevación de Privilegios en Windows Hyper-V Se han identificado vulnerabilidades críticas en Windows Hyper-V que permiten a un atacante con bajos privilegios ejecutar código malicioso.

    @BanCERT_gt

    25 Jan 2025

    17 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  29. Microsoft’s January 2025 Patch Tuesday Addresses 157 CVEs (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335) https://t.co/xSYGdYeHGV https://t.co/JV7dEvRUxa

    @ZinoVersluys

    22 Jan 2025

    12 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  30. #DOYOUKNOWCVE CISA ALERT! CISA Adds 7 Critical Vulnerabilities to KEV Catalog: Key Insights on CVE Type, Products, EPSS Scores, Mitigation, and Impact CVE-2025-21333, CVE-2025-21334 & CVE-2025-21335 - Use-After-Free Vulnerability in Microsoft Windows Hyper-V NT Kernel… http

    @Loginsoft_Inc

    21 Jan 2025

    70 Impressions

    1 Retweet

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  31. Microsoft’s January 2025 Patch Tuesday Addresses 157 CVEs (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335) https://t.co/50qhnYzp0g https://t.co/0UeN0bULFP

    @pcasano

    17 Jan 2025

    12 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  32. Microsoft’s January 2025 Patch Tuesday Addresses 157 CVEs (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335) https://t.co/HKkcrpLLCu https://t.co/zOpDWHqJQp

    @pcasano

    17 Jan 2025

    17 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  33. Microsoft’s January 2025 Patch Tuesday Addresses 157 CVEs (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335) https://t.co/frcG1bxqEB https://t.co/wnpSQFBsO9

    @TechMash365

    16 Jan 2025

    32 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  34. Latest Known Exploited Vulnerabilities (#KEV) : #CVE-2025-21333 #Microsoft #Windows Hyper-V NT Kernel Integration VSP Heap-based Buffer Overflow Vulnerability https://t.co/Wj2GXNvwUj

    @ScyScan

    16 Jan 2025

    6 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  35. Microsoft’s January 2025 Patch Tuesday Addresses 157 CVEs (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335) https://t.co/y4FIQDUqj0 https://t.co/lWUYtlcaLg

    @NickBla41002745

    16 Jan 2025

    19 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  36. Microsoft’s January 2025 Patch Tuesday Addresses 157 CVEs (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335) https://t.co/9G0fc2zFYX https://t.co/seH41U17nk

    @Trej0Jass

    16 Jan 2025

    22 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  37. Microsoft’s January 2025 Patch Tuesday Addresses 157 CVEs (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335) https://t.co/2cpB6GBytc https://t.co/nS6J7T70mj

    @Art_Capella

    16 Jan 2025

    23 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  38. 🚨 ALERT: Microsoft has confirmed THREE zero-day vulnerabilities in Hyper-V, currently under attack! Here's What You Need to Know: 🔍 The Situation: - There are three new vulnerabilities (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335) in Hyper-V, Microsoft's virtualization… h

    @jovinxthomas

    15 Jan 2025

    65 Impressions

    0 Retweets

    2 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  39. 🔴 Platform Name Vulnerability Type #CVE-2025-21333 (High) https://t.co/Bba50aj0Uq

    @dailycve

    15 Jan 2025

    26 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  40. CVE-2025-21333, CVE-2025-21334 et CVE-2025-21335 https://t.co/blRoP4leRv https://t.co/cIMd81nGcH

    @vernamm

    15 Jan 2025

    57 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  41. Microsoft’s January 2025 Patch Tuesday Addresses 157 CVEs (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335) https://t.co/VJqDWiu35z https://t.co/LWvUqXp7Hk

    @ggrubamn

    15 Jan 2025

    21 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  42. Microsoft’s January 2025 Patch Tuesday Addresses 157 CVEs (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335) https://t.co/KjmRAb8Rtm https://t.co/ZVSG4ItxQt

    @secured_cyber

    15 Jan 2025

    24 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  43. Microsoft’s January 2025 Patch Tuesday Addresses 157 CVEs (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335) https://t.co/KFPUfJ2Ukc https://t.co/IHkL7NdnBz

    @grandpafirewall

    15 Jan 2025

    27 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  44. Microsoft’s January 2025 Patch Tuesday Addresses 157 CVEs (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335) https://t.co/TAc1rnIuiB https://t.co/GxZzPkRJGr

    @Trej0Jass

    15 Jan 2025

    22 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  45. Microsoft’s January 2025 Patch Tuesday Addresses 157 CVEs (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335) https://t.co/bz8y3BpMZF https://t.co/xsHQkYSN47

    @dansantanna

    15 Jan 2025

    35 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  46. Três falhas de Zero-Day ativamente exploradas foram corrigidas na última atualização de segurança da Microsoft. ⤷ CVE-2025-21333 ⤷ CVE-2025-21334 ⤷ CVE-2025-21335 🔗Saiba mais: https://t.co/WGPBmJgxLw #netconn #cibersegurança #Tecnologia #microsoft

    @NetconnOficial

    15 Jan 2025

    2 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  47. 🔴 Critical Alert: Microsoft has just released a massive patch for 161 vulnerabilities across its software, including 3 zero-day flaws that have been actively exploited. ⤷ CVE-2025-21333 ⤷ CVE-2025-21334 ⤷ CVE-2025-21335 Patch now: https://t.co/0herwJS73C

    @TheHackersNews

    15 Jan 2025

    57135 Impressions

    193 Retweets

    393 Likes

    98 Bookmarks

    3 Replies

    9 Quotes

  48. Microsoft January 2025 Patch Tuesday fixes 8 zero-days, 159 flaws: https://t.co/FwLRe8Hyfr Microsoft's January 2025 Patch Tuesday addresses 159 vulnerabilities, including eight zero-days, with three actively exploited. Key vulnerabilities include CVE-2025-21333, CVE-2025-21334,…

    @securityRSS

    14 Jan 2025

    25 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  49. CVE-2025-21333 Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability https://t.co/upA027Ec3z

    @CVEnew

    14 Jan 2025

    18 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  50. 🚨 1st #PatchTuesday of 2025 is here! Microsoft & 3rd-party vendors address: 159 vulnerabilities 3 zero-days (CVE-2025-21335, CVE-2025-21334, CVE-2025-21333) 3 with PoCs 10 critical flaws Visit our comprehensive summary for more information: https://t.co/r9bdB8nDkS Here's

    @Action1corp

    14 Jan 2025

    76 Impressions

    1 Retweet

    2 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations

References