PT-2025-32854 · Microsoft · Windows Ntlm+1

D1Iv3

+1

·

Published

2025-08-12

·

Updated

2025-10-30

·

CVE-2025-53778

CVSS v2.0

9.0

High

VectorAV:N/AC:L/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions: Windows NTLM (affected versions not specified)
Description: Improper authentication in Windows NTLM allows an authorized attacker to elevate privileges over a network.
Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

LPE

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

BDU:2025-09747
CVE-2025-53778

Affected Products

Windows
Windows Ntlm