CVE-2025-21204

INETPUB - ⚠️nie usuwaj tego katalogu. • Katalog jest pusty. • Został stworzony przez Windows Update. • Celem jest ochrona Twojego systemu. • Stało się to w ostatnim miesiącu. • Więcej informacji znajdziesz szukając CVE-2025-21204. Daj znać czy go zauważyłe

Windows Update プロセスの脆弱性 CVE-2025-21204：SYSTEM 乗っ取りの PoC が提供 https://t.co/8YKDVFIO7W Windows Update プロセスに発見された新たな脆弱性は、コード・インジェクションを伴わずに EDR や AMSI による検出を回避す

Missed in April's Patch Tuesday: CVE-2025-21204, a Windows Update Stack EoP. @ElliShlomo released an exploit on Apr 14, but pulled it days later. Then the fix itself got flagged: it lets non-admins break Windows Updates. MS? No plans to fix. 😬 ➡️ https://t.co/4YHD0MkoAy ht

ماکروسافت برای آسیب پذیری با کد شناسایی CVE-2025-21204 ،پچ لازم را اعمال نمود. این آسیب پذیری مربوط به servicing stack در ویندوز می شود که به هکرها امکان سوء استفاده از sy

#CVE-2025-21204 https://t.co/lHJPwtbuie

🔒 Surprise! That empty "inetpub" folder on Windows 11 after the April 2025 update isn't a glitch—it's a security upgrade! Microsoft’s got your back against CVE-2025-21204. Who knew empty could be so secure? #WindowsForum #Windows11 #SecurityUpgrade https://t.co/cGWvJ3b97l

⚠️ Windows update bug (CVE-2025-21204) creates "inetpub" folder, enabling LPE! Attackers exploit it. Secure your systems! 🛡️ #WindowsSecurity #Cybersecurity #PatchNow https://t.co/TfAMrC9wLi

📣This week's cybersecurity highlights... out now! Everything you need to know this week in one place 👇 🔵 Microsoft's fix for CVE-2025-21204 triggers another vulnerability 🔵 TAG-124: Malicious infrastructure to propagate malware https://t.co/WTJvdGGuj7

آسیب پذیری جدیدی برای Windows Update Stack با کد شناسایی CVE-2025-21204 منتشر شده است. آسیب پذیری به هکرها امکان اجرای کد و ارتقای سطح دسترسی به یوزر system را می دهد. با استفاده پکیج update جعلی یا حمله mitm می توانند این آسیب پذیری را exploit می شود. https://t.co/Poz3aKY03t h

Windows Güncelleme Açığı Kapatırken Yeni Bir Güvenlik Zafiyeti Oluşturdu (CVE-2025-21204) https://t.co/21EXXWVspE https://t.co/vYULOZNyow

Microsoft-Update (Apr 2025) erstellt automatisch einen leeren inetpub-Ordner – auch wenn IIS nicht verwendet wird. Nicht löschen! Gehört zu Sicherheitsmaßnahme (CVE-2025-21204). https://t.co/hMVl3ZKyy4

CVE-2025-21204: SYSTEM-Level Privilege Escalation in Windows Update Stack Exposed, PoC Released About the c:\inetpub … https://t.co/Kqr4KIVauA

CVE-2025-21204: SYSTEM-Level Privilege Escalation in Windows Update Stack Exposed, PoC Released About the c:\inetpub … https://t.co/Kqr4KIVauA

Windows Update Stackの脆弱性（CVE-2025-21204）により、NTFSジャンクションを悪用してSYSTEM権限を取得可能。研究者がPoCを公開。Microsoftは4月の更新でC:\inetpubを事前作成し、攻撃を防止。このフォルダは削除しないこと。 https://t.co/Jg9AeVlXJD

Security researcher Elli Shlomo published the technical details and a proof-of-concept exploit code for CVE-2025-21204, a severe local privilege escalation flaw within the Windows Update Stack https://t.co/2p4ZR9l9bd

Windows 11 users: Notice a new “inetpub” folder? Don’t delete it—it’s part of a security fix (CVE-2025-21204) from the latest Patch Tuesday. If you already deleted it, restore it by enabling "Internet Information Services" in Windows Features. https://t.co/8ns8xuWK63 https://t.c

⚡UPDATES! April 16 #ViaMonstraOfficeHours featuring Andrew Johnson 💻 Some devices being offered a Windows 11 upgrade, TLS Certificates reduced to 47 days, vulnerability - CVE-2025-21204, and more! #ViaMonstraAcademy UPDATES 4.16.25 ➡️ https://t.co/Ewpvf8T9mh https://t.co/hRyd7w

⚡UPDATES! April 16 #ViaMonstraOfficeHours featuring Andrew Johnson 💻 Some devices being offered a Windows 11 upgrade, TLS Certificates reduced to 47 days, vulnerability - CVE-2025-21204, and more! #ViaMonstraAcademy Full Office Hours 4.16.25 ➡️ https://t.co/AFoUWRIvXa https://t

[1day1line] CVE-2025-21204: Privilege Escalation via Improper Link Following in the Windows Update Stack https://t.co/DHJN12WrCj Today’s 1day1line covers a privilege escalation vulnerability found in the Windows Update Stack. Without any memory corruption, the escalation was

Noticed a strange “C:\inetpub” folder after the April 2025 Windows (Patch Tuesday) updates? Don’t panic—it’s not a virus. It’s part of a critical security fix (CVE-2025-21204) that protects your system. Microsoft says to leave it, even if you don’t use IIS. #Security #CVE2025

No no no it's not some "bug" guys, It's how Microsoft patched CVE-2025-21204. lmaooo https://t.co/4oeMc85kNy

直近のWindowsの定例更新でCドライブ配下に作成された、空のinetpubフォルダについて。Windows Process Activationの権限昇格脆弱性CVE-2025-21204に対する緩和策なので、IISを使用していなくても削除しないように。 https://t.co/JaCFKHaJI9 消してしまった場合、プログラムと機能からIISを有効化

Wondering why a new 'inetpub' folder appeared after the latest Windows update? 🧐 It’s not just for IIS. Microsoft added it as a security measure against CVE-2025-21204. Don’t delete it. Here's why: https://t.co/xoBvTHF0Bu #WindowsUpdate #InfoSec #CyberSecurity

Nach dem neuesten #Windows Update im April taucht ein mysteriöser "inetpub"-Ordner auf. #Microsoft warnt: Nicht löschen! Er schützt vor einer kritischen Sicherheitslücke (CVE-2025-21204). Erfahre mehr und was zu tun ist, falls er weg ist: https://t.co/bAn5ziq9n7 https://t.co/qlay

This CVE-2025-21204 is interesting, first is what would happen if a privileged user creates an "inetpub" and here is Microsoft's new ACL's. They are preventing people writing and deleting files from the Inetpub folder which are being used for SYSTEM / NETWORK SERVICE accounts. ht

No, don’t delete that new inetpub folder. It’s part of Microsoft’s fix for CVE-2025-21204, a local privilege escalation flaw. ✅ It’s harmless ✅ It’s for protection ❌ It’s not just for IIS Leave it. It’s watching your back. 🔒 https://t.co/SjS8oHRHlk

Microsoft put C:\inetpub junk there for a reason 🫠 CVE-2025-21204 #greatfix https://t.co/VlVgTdS9mD

Microsoft confirms the unexpected “inetpub” folder created after the April 2025 update is not a bug. It’s tied to a security patch (CVE-2025-21204) meant to protect system files from malicious attacks. #Windows11 #Microsoft #CyberSecurity #WindowsUpdate #CVE2025 #SystemSecurity h

🚨 Windows users — don’t delete the C:\inetpub folder! After the April 2025 patch, Microsoft confirmed it's created even without IIS installed. ✅ It’s part of a security fix for CVE-2025-21204 🛑 Deleting it may interfere with system protection 🔗 https://t.co/ZYCx4HtprM http

If you see a new `inetpub` folder on your Windows 11 after the April 2025 update, don't worry It's part of a security patch for CVE-2025-21204 and should not be deleted. #Windows11 #Microsoft #SecurityUpdate https://t.co/XYkCu5vELR

April 2025 Windows update creates an empty "inetpub" folder (even without IIS). Microsoft warns: do not delete it. It increases protection related to CVE-2025-21204. https://t.co/FrMpnhw4Gp

New Windows update creates an empty "inetpub" folder? 📁 Microsoft warns: DO NOT DELETE! It's part of a security update (CVE-2025-21204) to prevent privilege escalation. 🤔 Learn more to stay secure! #WindowsUpdate #Cybersecurity #InfoSec https://t.co/DzSo1YXUku

あ、パッチ適用で作成されたinetpubフォルダ消しちゃダメなのか / CVE-2025-21204 - セキュリティ更新プログラム ガイド - Microsoft - Windows プロセス アクティブ化の特権昇格の脆弱性 https://t.co/kPUU09EZFb

🚨 CVE-2025-21204 🔴 HIGH (7.8) 🏢 Microsoft - Windows Server 2025 🏗️ 10.0.26100.0 🔗 https://t.co/rfILlo6ofV #CyberCron #VulnAlert #InfoSec https://t.co/bI5e0B4WxA

CVE-2025-21204 Improper link resolution before file access ('link following') in Windows Update Stack allows an authorized attacker to elevate privileges locally. https://t.co/bHL4lAPB6o