CVE-2025-21391

Name of the Vulnerable Software and Affected Versions Microsoft Windows (affected versions not specified)

Description The issue is related to an elevation of privilege vulnerability in Windows Storage. It allows an attacker to elevate their privileges to the level of SYSTEM and delete targeted files, potentially leading to service unavailability. The vulnerability is being actively exploited. Successful exploitation may allow an attacker to delete data, disrupting services. The vulnerability can be exploited without user interaction, allowing for large-scale attacks.

Recommendations Apply the patches as described in Microsoft's security advisory to fix the elevation of privilege flaw in Windows Storage. As a temporary workaround, consider restricting access to the Windows Storage component until a patch is available. Apply the critical updates to protect the environment effectively.