New Windows 0-Click NTLM Credential Leakage Vulnerability Bypasses Microsoft’s Patch

2025-08-13 12:08

A critical zero-click NTLM credential leakage vulnerability that circumvents Microsoft’s recent patch for CVE-2025-24054. The newly identified flaw, assigned CVE-2025-50154, allows attackers to extract NTLM hashes from fully patched Windows systems without any user interaction, demonstrating that Microsoft’s April security update was incomplete. Key Takeaways1. CVE-2025-50154 bypasses Microsoft’s recent patch, enabling zero-click NTLM credential theft.2. […]

The post New Windows 0-Click NTLM Credential Leakage Vulnerability Bypasses Microsoft’s Patch appeared first on Cyber Security News.

This article has been indexed from Cyber Security News

Read the original article:

New Windows 0-Click NTLM Credential Leakage Vulnerability Bypasses Microsoft’s Patch

← What is MCP Server – How it is Powering AI-Driven Cyber Defense

FortiOS, FortiProxy, and FortiPAM Auth Bypass Vulnerability Allows Attackers to Gain Full Control →

Read the original article:

Post navigation