A significant vulnerability in Microsoft Windows File Explorer, identified as CVE-2025-24071, has been discovered and is being actively exploited in the wild.
This vulnerability allows attackers to capture NTLM hashes, potentially leading to network spoofing attacks and credential theft.
The exploit involves specially crafted .library-ms files embedded within compressed archives like RAR or ZIP.
https://gbhackers.com/microsoft-windows ... erability/