Microsoft Windows WebDAV 0-Day RCE Vulnerability Actively Exploited in The Wild
Posted: Wed Jun 11, 2025 5:17 am
A critical zero-day vulnerability in Microsoft Windows, designated CVE-2025-33053, has been actively exploited by the advanced persistent threat (APT) group Stealth Falcon.
The flaw, enabling remote code execution (RCE) through manipulation of a system’s working directory, was addressed by Microsoft in its June 2025 Patch Tuesday updates following CPR’s responsible disclosure. Below is a technical breakdown of the attack and its implications.
https://gbhackers.com/microsoft-windows-webdav-0-day/
The flaw, enabling remote code execution (RCE) through manipulation of a system’s working directory, was addressed by Microsoft in its June 2025 Patch Tuesday updates following CPR’s responsible disclosure. Below is a technical breakdown of the attack and its implications.
https://gbhackers.com/microsoft-windows-webdav-0-day/