What is the CVSS score of CVE-2025-21171?

CVE-2025-21171 has a CVSS 3.1 base score of 7.5 (High). CVSS vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.6%.

Which versions of Powershell are affected by CVE-2025-21171?

CVE-2025-21171 presents notable security risk, a heap-based buffer overflow vulnerability rated CVSS 7.5.. A patch is available.

How to fix or mitigate CVE-2025-21171?

Within 30 days: Identify all affected systems and apply vendor patches as part of regular patch cycle. If patching is delayed, consider network segmentation to limit exposure.

Powershell CVE-2025-21171

HIGH

Heap-based Buffer Overflow (CWE-122)

2025-01-14 secure@microsoft.com

RCE Buffer Overflow Heap Overflow Red Hat Powershell Visual Studio 2022 Suse Net

7.5

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Patch released

Mar 31, 2026 - 21:13 nvd

Patch available

Analysis Generated

Mar 28, 2026 - 18:03 vuln.today

CVE Published

Jan 14, 2025 - 18:15 nvd

HIGH 7.5

DescriptionNVD

.NET Remote Code Execution Vulnerability

AnalysisAI

.NET Remote Code Execution Vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Technical ContextAI

This vulnerability is classified under CWE-122. Affected products include: Microsoft .Net, Microsoft Powershell, Microsoft Visual Studio 2022.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.