Microsoft Windows NTLM Hash Disclosure Spoofing Vulnerability (CVE-2025-24054)
CVE number = CVE-2025-24054
CVE-2025-24054 is a vulnerability involving NTLM hash disclosure through spoofing, triggered by specially crafted .library-ms files.
Active exploitation in the wild has been observed since March 19, 2025, enabling attackers to potentially leak NTLM hashes or user credentials and compromise affected systems.
Although Microsoft issued a patch on March 11, 2025, threat actors had more than a week to create and deploy exploits before the vulnerability began being actively abused.
Further details – https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24054
I am one of the editors here at www.systemtek.co.uk I am a UK based technology professional, with an interest in computer security and telecoms.