CVE-2025-26673 is a vulnerability classified under CWE-400 (Uncontrolled Resource Consumption) affecting Microsoft Windows 10 Version 1507 (build 10.0.10240.0). The issue resides in the Lightweight Directory Access Protocol (LDAP) implementation, where an attacker can send specially crafted network requests that cause the LDAP service to consume excessive system resources. This resource exhaustion can degrade system performance or cause the service to become unresponsive, effectively resulting in a denial of service (DoS). The vulnerability can be exploited remotely without any authentication or user interaction, increasing its risk profile. The CVSS v3.1 base score is 7.5, reflecting high severity due to the ease of exploitation and the impact on availability. No patches or exploits are currently publicly available, but the vulnerability is officially published and recognized by Microsoft and CISA. The affected product, Windows 10 Version 1507, is an early release of Windows 10 and is no longer supported, which complicates mitigation efforts for organizations still using this version. The LDAP service is critical in enterprise environments for directory services, authentication, and authorization, making this vulnerability particularly impactful in networked environments where LDAP is exposed or accessible.

For European organizations, the primary impact of CVE-2025-26673 is the potential disruption of directory services that rely on LDAP, which can cascade into authentication failures, access issues, and downtime for critical applications and services. This can affect sectors such as finance, healthcare, government, and telecommunications, where directory services are integral to operations. The denial of service could lead to operational interruptions, loss of productivity, and potential regulatory compliance issues, especially under GDPR where availability of services is a component of data protection. Organizations using legacy Windows 10 Version 1507 systems are particularly vulnerable, as these systems lack vendor support and security updates. The risk is heightened in environments where LDAP is exposed to untrusted networks or insufficiently segmented internal networks. While no data confidentiality or integrity loss is indicated, the availability impact alone can have severe operational consequences.

The most effective mitigation is to upgrade affected systems from Windows 10 Version 1507 to a supported and fully patched Windows version, as this version is out of support and unlikely to receive patches. Network-level controls should be implemented to restrict LDAP traffic to trusted hosts and networks only, using firewalls and access control lists to limit exposure. Monitoring LDAP service performance and network traffic for unusual spikes can help detect attempted exploitation. Employing rate limiting or connection throttling on LDAP servers can reduce the risk of resource exhaustion. Organizations should also review and harden their directory service configurations to minimize unnecessary exposure. In environments where upgrading is not immediately feasible, isolating legacy systems from the internet and untrusted networks is critical. Incident response plans should include procedures for LDAP service restoration and mitigation of DoS conditions.