{"uuid": "53d1e258-3688-4b77-9b0c-ed714ba44528", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-24054", "type": "exploited", "source": "https://t.me/cibsecurity/84329", "content": "\ud83d\udd8b\ufe0f CVE-2025-24054 Under Active Attack\u2014Steals NTLM Credentials on File Download \ud83d\udd8b\ufe0f\n\nThe U.S. Cybersecurity and Infrastructure Security Agency CISA on Thursday added a mediumseverity security flaw impacting Microsoft Windows to its Known Exploited Vulnerabilities KEV catalog, following reports of active exploitation in the wild. The vulnerability, assigned the CVE identifier CVE202524054 CVSS score 6.5, is a Windows New Technology LAN Manager NTLM hash disclosure.\n\n\ud83d\udcd6 Read more.\n\n\ud83d\udd17 Via \"The Hacker News\"\n\n----------\n\ud83d\udc41\ufe0f Seen on @cibsecurity", "creation_timestamp": "2025-04-18T12:46:36.000000Z"}