InfoSecBulletin Cybersecurity for mankind
CrowdStrike has issued security updates for two vulnerabilities in its Falcon Sensor for Windows, CVE-2025-42701 and CVE-2025-42706. These flaws require local code execution and may let attackers delete files, which could affect system stability and security monitoring.
Vulnerabilities found through CrowdStrike’s Bug Bounty program reflect their proactive security efforts. There’s no evidence of these flaws being exploited, and CrowdStrike is actively monitoring for any potential abuse.
Dahua patches multiple critical vulnerabilities in its products
South Korea fines Coupang Record $409 mln fine for data leak
ShinyHunters claim stolen data from 100+ org via oracle PeopleSoft servers
Security Update: RoguePlanet, BitLocker Bypass, Chromium Zero-Day, and More Critical Threats Uncovered
73 Microsoft Packages Compromised in Password Stealer Attack
New Windows Defender ‘RoguePlanet’ zero-day grants SYSTEM privileges
Microsoft June Patches 200 Vulnerabilities including 3 zero days
World’s first wind power underwater data center is now live
VMware Fixed Multiple Flaws Allow Attackers to Inject Malicious Scripts
CVE-2026-50751
Check Point VPN 0-day Flaw Exploited in the Wild
The advisory highlights that the vulnerabilities stem from two different flaws — a race condition and a logic error — both within the Windows version of the Falcon Sensor.
CVE-2025-42701 is a race condition that may allow deletion of files under certain conditions. CVE-2025-42706 stems from a logic error in the Falcon Sensor’s file operations, which can also lead to file deletion.
CrowdStrike notes, “A logic error exists in the Falcon sensor for Windows that could allow an attacker, with the prior ability to execute code on a host, to delete arbitrary files.”
While the flaws do not directly allow remote code execution, they could be exploited to destabilize system functionality or disable security mechanisms, indirectly aiding further compromise.
The company warns, “Exploiting these issues to delete files could potentially lead to stability or functionality issues with the CrowdStrike Falcon Windows sensor, or other software on the system including the operating system.”
Importantly, Falcon sensors for macOS, Linux, and Legacy Windows systems are not affected by these vulnerabilities.
CrowdStrike found that Falcon Sensor for Windows versions 7.28 and earlier have vulnerabilities. They released fixes for various builds, including hotfixes for versions 7.24 to 7.28 and an update for version 7.16 for older Windows systems like Windows 7 and Windows Server 2008 R2.
The patched versions include:
7.28.20008 and later
7.27.19909
7.26.19813
7.25.19707
7.24.19608
7.16.18637 (Windows 7 / 2008 R2 only)
CrowdStrike confirmed that the 7.24 hotfix updates the LTV Sensor for Windows IoT.
