Microsoft

Microsoft has a high-severity vulnerability (CVSS 8.8) that requires adjacent network access but no authentication or user interaction, allowing attackers to achieve complete compromise including data theft, system modification, and service disruption. Based on the CVSS vector, this is a local network attack that bypasses all authentication controls and delivers maximum impact across confidentiality, integrity, and availability. Security teams should monitor for exploitation attempts targeting systems on the same local network segment and prioritize patching once Microsoft releases a fix by the September 19, 2025 deadline.