CVE-2025-24991 - Microsoft Windows NTFS Out-Of-Bounds Read Vulnerability

Microsoft | Windows

• Date Added:
• 2025-03-11

• Due Date:
• 2025-04-01

Vulnerability Name

Microsoft Windows NTFS Out-Of-Bounds Read Vulnerability

Description

Microsoft Windows New Technology File System (NTFS) contains an out-of-bounds read vulnerability that could allow for information disclosure.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Additional Notes

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-24991 ; https://nvd.nist.gov/vuln/detail/CVE-2025-24991

Latest Security News

Apple Releases Patch for WebKit Zero-Day Vulnerability Exploited in Targeted Attacks

North Korean Lazarus hackers infect hundreds via npm packages

Apple fixes WebKit zero-day exploited in ‘extremely sophisticated’ attacks

Windows 10 KB5053606 update fixes broken SSH connections

Microsoft March 2025 Patch Tuesday fixes 7 zero-days, 57 flaws

Windows 11 KB5053598 & KB5053602 cumulative updates released

Microsoft replacing Remote Desktop app with Windows App in May

MassJacker malware uses 778,000 wallets to steal cryptocurrency

Common Alerts

MediumX-Frame-Options Defined via META (Non-compliant with Spec)

HighViewstate without MAC Signature (Unsure)

HighSource Code Disclosure - File Inclusion

InformationalLoosely Scoped Cookie

InformationalGraphQL Endpoint Supports Introspection

HighHeartbleed OpenSSL Vulnerability

MediumFile Upload

MediumApplication Error Disclosure

HighLog4Shell (CVE-2021-45046)

InformationalBase64 Disclosure in WebSocket message

Top CVE List

CVE-2024-50302 Linux Kernel Use of Uninitialized Resource Vulnerability

CVE-2024-41710 Mitel SIP Phones Argument Injection Vulnerability

CVE-2025-22224 VMware ESXi and Workstation TOCTOU Race Condition Vulnerability

CVE-2020-29574 CyberoamOS (CROS) SQL Injection Vulnerability

CVE-2025-24989 Microsoft Power Pages Improper Access Control Vulnerability

CVE-2025-22225 VMware ESXi Arbitrary Write Vulnerability

CVE-2025-22226 VMware ESXi, Workstation, and Fusion Information Disclosure Vulnerability

CVE-2024-49035 Microsoft Partner Center Improper Access Control Vulnerability

CVE-2022-43939 Hitachi Vantara Pentaho BA Server Authorization Bypass Vulnerability

CVE-2025-0411 7-Zip Mark of the Web Bypass Vulnerability

Common CWEs

MediumCWE-476 NULL Pointer Dereference

MediumCWE-390 Detection of Error Condition Without Action

CWE-1100 Insufficient Isolation of System-Dependent Functions

CWE-1079 Parent Class without Virtual Destructor Method

MediumCWE-94 Improper Control of Generation of Code ('Code Injection')

CWE-1187 DEPRECATED: Use of Uninitialized Resource

CWE-920 Improper Restriction of Power Consumption

CWE-280 Improper Handling of Insufficient Permissions or Privileges

CWE-143 Improper Neutralization of Record Delimiters

CWE-578 EJB Bad Practices: Use of Class Loader