Post by Cymulate

🚨 New NTLM Vulnerability Discovered by Cymulate Research Labs Ruben E. from the Cymulate Research Labs found that Microsoft’s patch for CVE-2025-50154, a zero-click NTLM challenge leak, failed to fully fix the issue. The flaw remained exploitable and has now been assigned a new CVE: CVE-2025-59214. A new patch was issued earlier this week. This discovery reinforces why continuous validation and security assessments are critical, because “patched” doesn’t always mean “protected.” 🔗 Read more on the Cymulate blog: https://bit.ly/4qiQXuC