CVE-2025-21194

HIGH
Published Feb 11, 2025 Modified Jul 8, 2025 CWE-20

Description

Microsoft Surface Security Feature Bypass Vulnerability

Is your site exposed to CVE-2025-21194?

Run a free security scan — no signup, results in seconds.

CVSS v3.1 Score

7.1
HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Weakness Type (CWE)

CWE-20 Improper Input Validation

Affected Products

Vendor Product
microsoft surface_hub_2s_firmware
microsoft surface_hub_2s
microsoft surface_pro_8_for_business_1983_firmware
microsoft surface_pro_8_for_business_1983
microsoft surface_laptop_go_firmware
microsoft surface_laptop_go
microsoft surface_laptop_go_2_firmware
microsoft surface_laptop_go_2
microsoft surface_hub_3_50_firmware
microsoft surface_hub_3_50
microsoft surface_hub_2s_firmware
microsoft surface_hub_2s
microsoft surface_pro_7\+_firmware
microsoft surface_pro_7\+
microsoft surface_laptop_go_3_firmware
microsoft surface_laptop_go_3
microsoft surface_go_3_firmware
microsoft surface_go_3
microsoft surface_laptop_go_2_firmware
microsoft surface_laptop_go_2
microsoft surface_pro_9_with_5g_1997_firmware
microsoft surface_pro_9_with_5g_1997
microsoft surface_pro_9_with_5g_1996_firmware
microsoft surface_pro_9_with_5g_1996
microsoft surface_laptop_3_1867_firmware
microsoft surface_laptop_3_1867
microsoft surface_laptop_3_1872_firmware
microsoft surface_laptop_3_1872
microsoft surface_laptop_4_1958_firmware
microsoft surface_laptop_4_1958
microsoft surface_laptop_4_1950_firmware
microsoft surface_laptop_4_1950
microsoft surface_laptop_4_1952_firmware
microsoft surface_laptop_4_1952
microsoft surface_laptop_4_1978_firmware
microsoft surface_laptop_4_1978
microsoft windows_dev_kit_firmware
microsoft windows_dev_kit
microsoft surface_hub_2s_85_firmware
microsoft surface_hub_2s_85
microsoft surface_hub_3_50_firmware
microsoft surface_hub_3_50
microsoft surface_hub_3_85_firmware
microsoft surface_hub_3_85
microsoft surface_pro_8_1983_firmware
microsoft surface_pro_8_1983
microsoft surface_pro_8_for_business_with_lte_advanced_1982_firmware
microsoft surface_pro_8_for_business_with_lte_advanced_1982
microsoft surface_hub_3_85_firmware
microsoft surface_hub_3_85
microsoft surface_hub_2s_85_firmware
microsoft surface_hub_2s_85
microsoft surface_go_3_1926_firmware
microsoft surface_go_3_1926
microsoft surface_go_3_1901_firmware
microsoft surface_go_3_1901
microsoft surface_go_3_2022_firmware
microsoft surface_go_3_2022
microsoft surface_go_2_1926_firmware
microsoft surface_go_2_1926
microsoft surface_go_2_1901_firmware
microsoft surface_go_2_1901
microsoft surface_go_2_1927_firmware
microsoft surface_go_2_1927

References

Frequently Asked Questions

What is CVE-2025-21194? +
Microsoft Surface Security Feature Bypass Vulnerability It has a CVSS v3.1 base score of 7.1 (HIGH).
How severe is CVE-2025-21194? +
CVE-2025-21194 has a CVSS v3.1 score of 7.1 out of 10, rated HIGH. This is a high-severity vulnerability that should be prioritized for patching.
What products are affected by CVE-2025-21194? +
CVE-2025-21194 affects products from microsoft, specifically: surface_go_2_1901, surface_go_2_1901_firmware, surface_go_2_1926, surface_go_2_1926_firmware, surface_go_2_1927, surface_go_2_1927_firmware, surface_go_3, surface_go_3_1901, surface_go_3_1901_firmware, surface_go_3_1926, surface_go_3_1926_firmware, surface_go_3_2022, surface_go_3_2022_firmware, surface_go_3_firmware, surface_hub_2s, surface_hub_2s_85, surface_hub_2s_85_firmware, surface_hub_2s_firmware, surface_hub_3_50, surface_hub_3_50_firmware, surface_hub_3_85, surface_hub_3_85_firmware, surface_laptop_3_1867, surface_laptop_3_1867_firmware, surface_laptop_3_1872, surface_laptop_3_1872_firmware, surface_laptop_4_1950, surface_laptop_4_1950_firmware, surface_laptop_4_1952, surface_laptop_4_1952_firmware, surface_laptop_4_1958, surface_laptop_4_1958_firmware, surface_laptop_4_1978, surface_laptop_4_1978_firmware, surface_laptop_go, surface_laptop_go_2, surface_laptop_go_2_firmware, surface_laptop_go_3, surface_laptop_go_3_firmware, surface_laptop_go_firmware, surface_pro_7\+, surface_pro_7\+_firmware, surface_pro_8_1983, surface_pro_8_1983_firmware, surface_pro_8_for_business_1983, surface_pro_8_for_business_1983_firmware, surface_pro_8_for_business_with_lte_advanced_1982, surface_pro_8_for_business_with_lte_advanced_1982_firmware, surface_pro_9_with_5g_1996, surface_pro_9_with_5g_1996_firmware, surface_pro_9_with_5g_1997, surface_pro_9_with_5g_1997_firmware, windows_dev_kit, windows_dev_kit_firmware. Check the affected products table above for specific version ranges.
How do I check if I'm vulnerable to CVE-2025-21194? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.

Related Vulnerabilities

Don't wait for an exploit

Scan your website for vulnerabilities like CVE-2025-21194 — free, no signup required.