vulnerability
Microsoft Windows: CVE-2025-33053: Internet Shortcut Files Remote Code Execution Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:M/Au:N/C:C/I:C/A:C) | Jun 10, 2025 | Jun 10, 2025 | Sep 17, 2025 |
Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
Jun 10, 2025
Added
Jun 10, 2025
Modified
Sep 17, 2025
Description
External control of file name or path in Internet Shortcut Files allows an unauthorized attacker to execute code over a network.
Solutions
microsoft-windows-windows_10-1507-kb5060998microsoft-windows-windows_10-1607-kb5061010microsoft-windows-windows_10-1809-kb5060531microsoft-windows-windows_10-21h2-kb5060533microsoft-windows-windows_10-22h2-kb5060533microsoft-windows-windows_11-22h2-kb5060999microsoft-windows-windows_11-23h2-kb5060999microsoft-windows-windows_11-24h2-kb5060842microsoft-windows-windows_server_2012-kb5061059microsoft-windows-windows_server_2012_r2-kb5061018microsoft-windows-windows_server_2016-1607-kb5061010microsoft-windows-windows_server_2019-1809-kb5060531microsoft-windows-windows_server_2022-21h2-kb5060526microsoft-windows-windows_server_2022-22h2-kb5060526microsoft-windows-windows_server_2022-23h2-kb5060118microsoft-windows-windows_server_2025-24h2-kb5060842
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.