CVE-2025-29842

High

Acceptance of extraneous untrusted data with trusted data in UrlMon allows an unauthorized attacker to bypass a security feature over a…

secure@microsoft.com·CWE-349·Published 2025-05-13

CVSS

7.5

EPSS

0.00

KEV

Exploits

cve.orgen

144 chars

Acceptance of extraneous untrusted data with trusted data in UrlMon allows an unauthorized attacker to bypass a security feature over a network.

NVDen

144 chars

Acceptance of extraneous untrusted data with trusted data in UrlMon allows an unauthorized attacker to bypass a security feature over a network.

NVDes

170 chars

La aceptación de datos extraños no confiables junto con datos confiables en UrlMon permite que un atacante no autorizado eluda una característica de seguridad en una red.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	7.5	—	—	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
3.1	Secondary	NVD	7.5	1.6	5.9