Multiple vulnerabilities in Microsoft Windows Remote Desktop Gateway (RD Gateway)
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2025-21278 CVE-2025-21225 |
| CWE-ID | CWE-362 CWE-843 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Windows Operating systems & Components / Operating system Windows Server Operating systems & Components / Operating system |
| Vendor | Microsoft |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Race condition
EUVDB-ID: #VU102669
Risk: Low
CVSSv4.0: 4.6 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2025-21278
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a race condition in Windows Remote Desktop Gateway (RD Gateway). A local attacker can exploit the race and cause a denial of service condition on the target system.
MitigationInstall updates from vendor's website.
Vulnerable software versionsWindows: 10 21H2 10.0.19041.3920 - 11 24H2 10.0.26100.2894
Windows Server: 2012 Gold - 2025 10.0.26100.2605
CPE2.3- cpe:2.3:o:microsoft:windows:10:21H2_10.0.19041.3920:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows:10_21H2:10.0.19043.4529:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows:10_21H2:10.0.19044.1147:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows:10_21H2:10.0.19044.1149:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows:10_21H2:10.0.19044.1151:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows:10_21H2:10.0.19044.1165:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows:10_21H2:10.0.19044.1200:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows:10_21H2:10.0.19044.1263:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server:2012_Gold:*:*:*:*:*:*:*
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2025-21278
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Type Confusion
EUVDB-ID: #VU102670
Risk: Medium
CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2025-21225
CWE-ID:
CWE-843 - Type confusion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a type confusion error in Windows Remote Desktop Gateway (RD Gateway). A remote attacker can pass specially crafted data to the application, trigger a type confusion error and cause a denial of service on the target system.
MitigationInstall updates from vendor's website.
Vulnerable software versionsWindows Server: 2016 10.0.14393.10 - 2025 10.0.26100.2605
CPE2.3- cpe:2.3:o:microsoft:windows_server:2016:10.0.14393.10:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server:2016:10.0.14393.51:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server:2016:10.0.14393.82:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server:2016:10.0.14393.105:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server:2016:10.0.14393.187:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server:2016:10.0.14393.222:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server:2016:10.0.14393.321:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server:2016:10.0.14393.351:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server:2016:10.0.14393.447:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server:2016:10.0.14393.479:*:*:*:*:*:*
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2025-21225
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
