CVE-2025-33050: 
vulnerability analysis and mitigation

CVE-2025-33050 is a protection mechanism failure vulnerability affecting Windows DHCP Server, discovered and disclosed on June 10, 2025, as part of Microsoft's June 2025 Patch Tuesday security updates. The vulnerability allows an unauthorized attacker to deny service over a network to the DHCP Server service (Wiz Report, MITRE CVE).

The vulnerability has been assigned a CVSS v3.1 base score of 7.5 (HIGH) with the following vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. The vulnerability is classified as a protection mechanism failure (CWE-693) that affects the Windows DHCP Server service. The attack vector is network-based, requires low attack complexity, needs no privileges, and requires no user interaction (NVD Database).

If successfully exploited, this vulnerability enables an unauthorized attacker to cause a denial of service condition in the Windows DHCP Server service. This can potentially disrupt network connectivity and DHCP services for affected systems, impacting the availability of network resources (Wiz Report).

Microsoft has released security updates to address this vulnerability as part of the June 2025 Patch Tuesday. Organizations are strongly advised to apply these security updates as soon as possible to protect against potential exploitation (Wiz Report).