KEV Entry

CVE-2025-33071

Known Exploited Vulnerability Entry External Catalog

Entry Details
Confirmed Exploited

CVE-2025-33071

2025-06-11 07:01 UTC


Timestamps

2025-06-11

2025-06-11


Scope

KEVIntel entry: Windows KDC Proxy Service (KPSSVC) Remote Code Execution Vulnerability | Affected: Microsoft / Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation), Windows Server 2016, Windows Server 2016 (Server Core installation), Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows Server 2022, 23H2 Edition (Server Core installation), Windows Server 2025, Windows Server 2025 (Server Core installation) | CVSS: 8.1 (HIGH) | Used in malware: unknown | Not yet in CISA KEV: True


References
  • {'id': 'CVE-2025-33071', 'url': 'https://www.cve.org/CVERecord?id=CVE-2025-33071'}
  • {'id': 'kevintel', 'url': 'https://kevintel.com/vuln/CVE-2025-33071'}

92fc1d30-cca3-412a-a9c3-fc84118a57c7

caeb2787-0d58-4236-9039-7c86c3e566f3

2026-06-23 11:12 UTC

2026-06-23 11:12 UTC

Evidence
1
Type Source Signal Confidence Details GCVE Metadata
public_report kevintel successful_exploitation 0.70
View details
{
  "added_date": "2025-06-11T07:01:39.000Z",
  "ahead_of_cisa_kev": null,
  "cvss_score": 8.1,
  "cvss_severity": "HIGH",
  "epss_percentile": null,
  "epss_score": null,
  "feed": "KEVIntel (kevintel.com)",
  "not_yet_in_cisa_kev": true,
  "product": "Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation), Windows Server 2016, Windows Server 2016 (Server Core installation), Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows Server 2022, 23H2 Edition (Server Core installation), Windows Server 2025, Windows Server 2025 (Server Core installation)",
  "title": "Windows KDC Proxy Service (KPSSVC) Remote Code Execution Vulnerability",
  "used_in_malware": "unknown",
  "vendor": "Microsoft"
}
-