ThreatCluster

Multiple CVEs Identified in IPv6 Implementation by Microsoft

First seen 18 Feb 2026, 15:24 UTC Api.Msrc.Microsoft 93% similarity 47

Article Content

Browse articles
ThreatCluster

Microsoft has published information on two critical vulnerabilities in the IPv6 implementation. CVE-2025-40158 and CVE-2025-40135, both published on November 12, 2025, involve the use of RCU in the ip6_output() and ip6_xmit() functions, respectively. Affected systems may be at risk due to these vulnerabilities.

ThreatCluster AI

Timeline

2025-11-12
CVE-2025-40158 and CVE-2025-40135 published
2026-02-18
Articles published detailing the vulnerabilities

Community

Browse all →