What is the CVSS score of CVE-2025-52488?

CVE-2025-52488 has a CVSS 3.1 base score of 8.6 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N. EPSS exploitation probability: 14.8%.

Which versions of Dotnetnuke are affected by CVE-2025-52488?

DNN CMS installations (versions 6.0.0-10.0.0) face a credential exposure vulnerability that could allow attackers to capture NTLM password hashes through specially crafted requests, potentially…. A patch is available.

Is there a public PoC exploit available for CVE-2025-52488?

Yes, a public proof-of-concept exploit is available for CVE-2025-52488. Prioritise patching immediately. EPSS: 14.8%.

How to fix or mitigate CVE-2025-52488?

Within 24 hours: Inventory all DNN installations and identify those running versions 6.0.0-10.0.0; disable SMB functionality if not required and isolate DNN servers from untrusted networks. Within 7 days: Implement network segmentation to restrict DNN server outbound SMB connections; deploy WAF rules to block suspicious request patterns targeting authentication endpoints; conduct credential audit for accounts with DNN access. Within 30 days: Upgrade to DNN 10.0.1 or later when available; consider application-level compensating controls or migration alternatives if upgrade timeline extends beyond patch availability.

Dotnetnuke CVE-2025-52488

HIGH

Information Exposure (CWE-200)

2025-06-21 security-advisories@github.com

GHSA-mgfv-2362-jq96

Information Disclosure Microsoft Dotnetnuke

8.6

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

None

Availability

None

Lifecycle Timeline

Patch released

Mar 31, 2026 - 21:13 nvd

Patch available

Analysis Generated

Mar 15, 2026 - 21:35 vuln.today

PoC Detected

Sep 15, 2025 - 15:21 vuln.today

Public exploit code

CVE Published

Jun 21, 2025 - 03:15 nvd

HIGH 8.6

DescriptionNVD

DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. In versions 6.0.0 to before 10.0.1, DNN.PLATFORM allows a specially crafted series of malicious interaction to potentially expose NTLM hashes to a third party SMB server. This issue has been patched in version 10.0.1.

AnalysisAI

DNN (DotNetNuke) CMS versions 6.0.0 through 10.0.0 contain a vulnerability that can expose NTLM hashes to a third-party SMB server. Through a specially crafted series of interactions, an attacker can force the DNN server to authenticate to an attacker-controlled SMB server, capturing NTLM credential hashes for offline cracking.

Technical ContextAI

The vulnerability allows an attacker to trigger the DNN server to make an outbound SMB connection to an attacker-controlled server. Windows automatically sends NTLM authentication credentials during SMB connections. The attacker captures the NTLMv2 hash and cracks it offline using tools like hashcat, recovering the service account's plaintext password.

RemediationAI

Update to DNN 10.0.1 or later. Block outbound SMB (port 445) from web servers. Use a local service account (not domain account) for the IIS application pool. Implement SMB signing.

More from same product – last 7 days

CVE-2026-40412 CRITICAL Monitor

10.0 May 22

Remote code execution in Microsoft Azure Orbital Spatio allows unauthenticated network attackers to upload dangerous fil

CVE-2026-41104 CRITICAL Monitor

10.0 May 22

Unsafe deserialization in Microsoft Planetary Computer Pro (Geocatalog) lets a remote unauthenticated attacker craft mal

CVE-2026-23652 CRITICAL Monitor

10.0 May 22

Remote code execution in Microsoft Power Pages allows unauthenticated network attackers to inject and execute operating-

CVE-2026-47280 CRITICAL Monitor

10.0 May 22

Privilege elevation in Microsoft Azure Resource Manager (ARM) allows remote unauthenticated attackers to bypass authenti

CVE-2026-42901 CRITICAL Monitor

10.0 May 22

Privilege escalation in Microsoft Entra ID enables remote unauthenticated attackers to bypass origin validation and gain

CVE-2025-52488 vulnerability details – vuln.today

Back

Dotnetnuke CVE-2025-52488

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

RemediationAI

More from same product – last 7 days

Share

External POC / Exploit Code