CVE-2025-58739 is a vulnerability identified in Microsoft Windows 10 Version 1507 (build 10.0.10240.0) affecting Windows File Explorer. The issue is categorized under CWE-200, indicating exposure of sensitive information to unauthorized actors. Specifically, the vulnerability allows an attacker to remotely exploit Windows File Explorer over a network to obtain sensitive information without requiring any privileges on the target system. However, exploitation requires user interaction, such as opening a malicious file or link that triggers the information leak. The leaked information can be used to perform spoofing attacks, potentially deceiving users or systems into trusting malicious content or communications. The CVSS v3.1 base score is 6.5 (medium severity), with the vector indicating network attack vector (AV:N), low attack complexity (AC:L), no privileges required (PR:N), user interaction required (UI:R), and high confidentiality impact (C:H) but no impact on integrity or availability (I:N/A:N). The vulnerability was published on October 14, 2025, and no patches or known exploits are currently reported. This vulnerability affects only the initial release version of Windows 10 and is unlikely to impact later versions or other Windows editions. The exposure of sensitive information could facilitate further attacks such as phishing, social engineering, or man-in-the-middle spoofing. Organizations still running this legacy version should prioritize mitigation due to the potential for remote exploitation and the confidentiality impact.

The primary impact of CVE-2025-58739 is the unauthorized disclosure of sensitive information, which compromises confidentiality. Attackers can leverage this information to conduct spoofing attacks, potentially leading to further exploitation such as phishing, credential theft, or unauthorized access. Although the vulnerability does not directly affect system integrity or availability, the indirect consequences of successful spoofing can be severe, including data breaches and lateral movement within networks. The ease of exploitation is moderate since no privileges are required and the attack can be performed remotely, but user interaction is necessary. Organizations with legacy Windows 10 Version 1507 systems are at risk, especially those with network exposure and users prone to social engineering. The lack of patches and known exploits increases the window of vulnerability. This threat could disrupt trust in network communications and file sharing, impacting sectors that rely heavily on Windows 10 legacy systems such as manufacturing, government, and critical infrastructure. The exposure could also facilitate targeted attacks against high-value individuals or systems by providing attackers with sensitive contextual information.

1. Upgrade affected systems to a supported and patched version of Windows 10 or later to eliminate the vulnerability. 2. Until patches are available, restrict network exposure of Windows 10 Version 1507 systems by implementing firewall rules that limit inbound and outbound traffic to trusted sources only. 3. Employ network segmentation to isolate legacy systems from critical infrastructure and sensitive data repositories. 4. Educate users about the risks of interacting with unknown or suspicious files and links, emphasizing caution to reduce the likelihood of triggering the vulnerability. 5. Monitor network traffic for anomalous activities that could indicate exploitation attempts, such as unusual file explorer network requests or spoofing indicators. 6. Use endpoint detection and response (EDR) tools to identify and contain suspicious behaviors related to file explorer or network spoofing. 7. Apply strict access controls and multi-factor authentication to reduce the impact of any successful spoofing attacks. 8. Maintain up-to-date backups and incident response plans to quickly recover from potential breaches stemming from this vulnerability.