{"vulnerability": "CVE-2025-21420", "sightings": [{"uuid": "ffa9e248-fdb1-4da9-a011-5397b9b3c593", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113987280325052803", "content": "", "creation_timestamp": "2025-02-11T21:04:27.026304Z"}, {"uuid": "ef346527-1802-47a1-a664-485e3ade1dad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://www.thezdi.com/blog/2025/2/11/the-february-2025-security-update-review", "content": "", "creation_timestamp": "2025-02-11T18:08:38.000000Z"}, {"uuid": "60103a60-f3d2-4823-aa86-1a0af624c6d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://bsky.app/profile/dinosn.bsky.social/post/3lilfrembfc2k", "content": "", "creation_timestamp": "2025-02-20T04:01:49.251622Z"}, {"uuid": "91d44e53-420c-4e3c-b02f-48fe0556fc62", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-21420", "type": "seen", "source": "https://bsky.app/profile/kyosuke-tanaka.bsky.social/post/3lilndcmmq223", "content": "", "creation_timestamp": "2025-02-20T06:17:04.173504Z"}, {"uuid": "4ee2ea71-799b-495e-a280-3ace03bb2331", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lilq6m4bjm2m", "content": "", "creation_timestamp": "2025-02-20T07:08:06.893822Z"}, {"uuid": "633a050e-836e-4b26-9215-6cdc5d07b714", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://bsky.app/profile/opfuchs.gay/post/3lilqjoerrk2b", "content": "", "creation_timestamp": "2025-02-20T07:14:22.406457Z"}, {"uuid": "14ab5bd1-fabe-4555-a835-d33d162a3953", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://bsky.app/profile/bolhasec.com/post/3lkowjwevgl2l", "content": "", "creation_timestamp": "2025-03-19T00:30:12.065846Z"}, {"uuid": "b4a9bed2-e4fb-40fe-ab84-6d21a099e264", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://infosec.exchange/users/DarkWebInformer/statuses/115396741958198430", "content": "", "creation_timestamp": "2025-10-18T19:09:05.743142Z"}, {"uuid": "96e5a3c3-2a92-4b7a-bd0d-8f9055b3635f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "published-proof-of-concept", "source": "Telegram/b83YqEoSamzTvIv2g9YPtkdIt3N3ryx9DhLHym4P7gSMoa8", "content": "", "creation_timestamp": "2025-06-12T21:00:05.000000Z"}, {"uuid": "eb72dfa5-b09d-4337-908a-99f968d90540", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lrmh3jhxdc25", "content": "", "creation_timestamp": "2025-06-15T02:44:49.320799Z"}, {"uuid": "44b8ac2f-a618-4e9f-97c4-ba6882682424", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://bsky.app/profile/bluesky.awakari.com/post/3lupxvr7rr42f", "content": "", "creation_timestamp": "2025-07-24T16:39:19.154866Z"}, {"uuid": "26619edf-f084-477c-b762-70990e068b17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://bsky.app/profile/Reverse-Engineering.activitypub.awakari.com.ap.brid.gy/post/3lupxvvfnjtn2", "content": "", "creation_timestamp": "2025-07-24T16:41:46.561255Z"}, {"uuid": "5435abd9-229b-4f91-989b-cdbe51a37ee1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://bsky.app/profile/bluesky.awakari.com/post/3lupy55ri6l2s", "content": "", "creation_timestamp": "2025-07-24T16:43:26.763849Z"}, {"uuid": "49207854-e738-49f7-a0d6-cdb0bbbd419f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://bsky.app/profile/Reverse-Engineering.activitypub.awakari.com.ap.brid.gy/post/3lupy5b5nu4p2", "content": "", "creation_timestamp": "2025-07-24T16:43:55.169422Z"}, {"uuid": "d939396e-ddcb-485e-a85b-9184d9c56041", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://infosec.exchange/users/0patch/statuses/114909232905599693", "content": "", "creation_timestamp": "2025-07-24T16:49:07.832477Z"}, {"uuid": "459f1834-7ceb-4d1f-8c48-4b7ec8667016", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://bsky.app/profile/Reverse-Engineering.activitypub.awakari.com.ap.brid.gy/post/3luq7th6hh5w2", "content": "", "creation_timestamp": "2025-07-24T19:03:37.601229Z"}, {"uuid": "007fa4fa-25bf-41a9-8a11-801c0fe7e566", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://bsky.app/profile/Reverse-Engineering.activitypub.awakari.com.ap.brid.gy/post/3luq7sxx56rs2", "content": "", "creation_timestamp": "2025-07-24T19:03:48.374796Z"}, {"uuid": "80d9f175-3edf-4e0f-8e0b-12f6fa8c4370", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3luqkm6rg3b2g", "content": "", "creation_timestamp": "2025-07-24T22:13:58.945139Z"}, {"uuid": "e927423a-5e76-4647-b3fd-dcab07f449fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://bsky.app/profile/buherator.bsky.social/post/3lurklg4nf42p", "content": "", "creation_timestamp": "2025-07-25T07:46:12.817753Z"}, {"uuid": "c4f1d80e-69e0-49bb-8980-fa4ff8aad3de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "published-proof-of-concept", "source": "https://t.me/ton618cyber/6719", "content": "#exploit\n1. CVE-2025-21420:\nWindows Disk Cleanup Tool EoP\nhttps://github.com/Network-Sec/CVE-2025-21420-PoC\n\n2. CVE-2024-34716:\nExploiting Linux Trickster via an XSS in PrestaShop\nhttps://github.com/TU-M/Trickster-HTB\n\n3. CVE-2025-26466:\nOpenSSH MitM/DoS\nhttps://github.com/rxerium/CVE-2025-26466\n]-> https://www.qualys.com/2025/02/18/openssh-mitm-dos.txt", "creation_timestamp": "2025-02-20T05:23:47.000000Z"}, {"uuid": "8bc5f13d-a5fb-4825-869a-4c0222b12875", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "published-proof-of-concept", "source": "Telegram/Lk08SRcMS-SPvUQrC5iLhxWRy_IgExecorO8K45SNl9E-QE", "content": "", "creation_timestamp": "2025-02-17T16:00:07.000000Z"}, {"uuid": "38a3b0e2-194c-4e1f-9be3-db77bf44adf3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "published-proof-of-concept", "source": "https://t.me/zer0day1ab/482", "content": "CVE-2025-21420:  Windows LPE (cleanmgr.exe DLL sideload) \n\nPoC: https://github.com/Network-Sec/CVE-2025-21420-PoC\n\nP.S. LPE \u0442\u0430\u043a\u0430\u044f \u0441\u0435\u0431\u0435 \u043a\u043e\u043d\u0435\u0447\u043d\u043e, \u043d\u043e sideload \u043e\u0442\u043c\u0435\u0442\u0438\u043c) \n\n#lpe #git #exploit #pentest #redteam", "creation_timestamp": "2025-02-19T10:24:10.000000Z"}, {"uuid": "fc31be84-ef1c-4642-aed4-da3f581a22ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "published-proof-of-concept", "source": "https://t.me/suboxone_chatroom/3534", "content": "CVE-2025-21420:  Windows LPE (cleanmgr.exe DLL sideload) \n\nPoC: https://github.com/Network-Sec/CVE-2025-21420-PoC\n\nP.S. LPE \u0442\u0430\u043a\u0430\u044f \u0441\u0435\u0431\u0435 \u043a\u043e\u043d\u0435\u0447\u043d\u043e, \u043d\u043e sideload \u043e\u0442\u043c\u0435\u0442\u0438\u043c) \n\n#lpe #git #exploit #pentest #redteam", "creation_timestamp": "2025-02-24T19:20:30.000000Z"}, {"uuid": "5d0e19f0-b0d7-4dcb-811c-6a350eb01309", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhwbhfmnwy2x", "content": "", "creation_timestamp": "2025-02-11T18:18:41.575634Z"}, {"uuid": "7d0aa318-72e7-4315-8373-a9f2e22aff37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3lim66y5i6m2k", "content": "", "creation_timestamp": "2025-02-20T11:18:53.026455Z"}, {"uuid": "1a7436de-fe0b-4390-8983-149e51859265", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://bsky.app/profile/andranglin.bsky.social/post/3limmjq34xk2e", "content": "", "creation_timestamp": "2025-02-20T15:35:28.650951Z"}, {"uuid": "19b56262-a159-4798-8098-d444b8e1c3a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lridesoosq62", "content": "", "creation_timestamp": "2025-06-13T11:29:56.308141Z"}, {"uuid": "0d0109dd-a87d-4b86-9b46-214dea673b50", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "seen", "source": "https://bsky.app/profile/bluesky.awakari.com/post/3lw6yb226h62c", "content": "", "creation_timestamp": "2025-08-12T09:20:45.030279Z"}, {"uuid": "2b3f4aad-d483-4a82-a346-f8ad7cdb6bf9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/14471", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aExploiting a vulnerability in Windows Disk Cleanup to elevate privileges and provide access to protected data in Edge by bypassing the security feature. CVE-2025-21420 and CVE-2025-21401.\nURL\uff1ahttps://github.com/toxy4ny/edge-maradeur\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-02-20T15:12:04.000000Z"}, {"uuid": "7d17ea38-bf53-4e47-b039-79285658cb63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "published-proof-of-concept", "source": "https://t.me/ton618cyber/2486", "content": "#exploit\n1. CVE-2025-21420:\nWindows Disk Cleanup Tool EoP\nhttps://github.com/Network-Sec/CVE-2025-21420-PoC\n\n2. CVE-2024-34716:\nExploiting Linux Trickster via an XSS in PrestaShop\nhttps://github.com/TU-M/Trickster-HTB\n\n3. CVE-2025-26466:\nOpenSSH MitM/DoS\nhttps://github.com/rxerium/CVE-2025-26466\n]-> https://www.qualys.com/2025/02/18/openssh-mitm-dos.txt", "creation_timestamp": "2025-02-20T05:23:48.000000Z"}, {"uuid": "307a5373-e5f9-4254-81fc-7747f9de9bd2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "published-proof-of-concept", "source": "https://t.me/RalfHackerChannel/1583", "content": "CVE-2025-21420:  Windows LPE (cleanmgr.exe DLL sideload) \n\nPoC: https://github.com/Network-Sec/CVE-2025-21420-PoC\n\nP.S. LPE \u0442\u0430\u043a\u0430\u044f \u0441\u0435\u0431\u0435 \u043a\u043e\u043d\u0435\u0447\u043d\u043e, \u043d\u043e sideload \u043e\u0442\u043c\u0435\u0442\u0438\u043c) \n\n#lpe #git #exploit #pentest #redteam", "creation_timestamp": "2025-02-17T13:29:09.000000Z"}, {"uuid": "493285cf-b8f7-427b-87ad-054a51efb536", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21420", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/11835", "content": "#exploit\n1. CVE-2025-21420:\nWindows Disk Cleanup Tool EoP\nhttps://github.com/Network-Sec/CVE-2025-21420-PoC\n\n2. CVE-2024-34716:\nExploiting Linux Trickster via an XSS in PrestaShop\nhttps://github.com/TU-M/Trickster-HTB\n\n3. CVE-2025-26466:\nOpenSSH MitM/DoS\nhttps://github.com/rxerium/CVE-2025-26466\n]-> https://www.qualys.com/2025/02/18/openssh-mitm-dos.txt", "creation_timestamp": "2025-02-20T12:03:40.000000Z"}]}