CVE 9.8 CRITICAL

CVE-2025-61303_CVE-2025-61303

October 21, 2025 invoker category_cve

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

Hatching Triage Sandbox Windows 10 build 2004 (2025-08-14) and Windows 10 LTSC 2021(2025-08-14) contains a vulnerability in its Windows behavioral analysis engine that allows a submitted malware sample to evade detection and cause denial-of-analysis. The vulnerability is triggered when a sample recursively spawns a large number of child processes, generating high log volume and exhausting system resources. As a result, key malicious behavior, including PowerShell execution and reverse shell activity, may not be recorded or reported, misleading analysts and compromising the integrity and availability of sandboxed analysis results.

AI Analysis

Vulnerability in Windows behavioral analysis engine allowing malware to evade detection

Basic Information

ID CVE-2025-61303

Source mitre

Published Oct 20, 2025 at 00:00

Modified Oct 21, 2025 at 13:47

Affected Product

Vendor Microsoft

Product Windows 10

Version 2004, 2021

Affected Versions n/a n/a n/a

CWE Classification

CWE-400

AI Assessment

AI Score 9.8 / 10

AI Severity Critical

Product Windows 10

Version 2004, 2021

References

github.com /eGkritsis/CVE-2025-61303

{
    "lastseen": "",
    "description": "Hatching Triage Sandbox Windows 10 build 2004 (2025-08-14) and Windows 10 LTSC 2021(2025-08-14) contains a vulnerability in its Windows behavioral analysis engine that allows a submitted malware sample to evade detection and cause denial-of-analysis. The vulnerability is triggered when a sample recursively spawns a large number of child processes, generating high log volume and exhausting system resources. As a result, key malicious behavior, including PowerShell execution and reverse shell activity, may not be recorded or reported, misleading analysts and compromising the integrity and availability of sandboxed analysis results.",
    "published": "2025-10-20T00:00:00.000Z",
    "modified": "2025-10-21T13:47:55.289Z",
    "type": "cve",
    "title": "CVE-2025-61303",
    "source": "mitre",
    "references": "https://github.com/eGkritsis/CVE-2025-61303",
    "id": "CVE-2025-61303",
    "bulletinFamily": "",
    "cwe": [
        "CWE-400"
    ],
    "cvelist": null,
    "sourceData": "n/a n/a n/a",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Windows 10",
    "version": "2004, 2021",
    "vendor": "Microsoft",
    "ai_description": "Vulnerability in Windows behavioral analysis engine allowing malware to evade detection",
    "ai_severity": "Critical",
    "ai_vendor": "",
    "ai_product": "Windows 10",
    "ai_version": "2004, 2021",
    "ai_score": 9.8
}

💭 Join the Security Discussion ❌ Cancel Reply