Privilege Elevation Vulnerability in Windows Cross Device Service by Microsoft
CVE-2025-24076

7.3HIGH

Key Information:

Vendor
Microsoft
Status
Windows 11 Version 22h2
Windows Server 2025 (server Core Installation)
Windows 11 Version 22h3
Windows 11 Version 23h2
Vendor
CVE Published:
11 March 2025

Badges

📈 Score: 1,200👾 Exploit Exists📰 News Worthy

What is CVE-2025-24076?

CVE-2025-24076 is a privilege elevation vulnerability found in the Windows Cross Device Service developed by Microsoft. This service is intended to facilitate seamless interaction between multiple Windows devices, enabling users to share files and resources more effectively. However, the identified vulnerability compromises the integrity of access controls, allowing an authorized attacker to potentially elevate their privileges on the local machine. This exploitation can lead to severe consequences for organizations, such as unauthorized access to sensitive data or critical system functions.

Technical Details

CVE-2025-24076 arises from improper access control mechanisms within the Windows Cross Device Service framework. The vulnerability can be triggered by an authorized user exploiting security weaknesses that enable them to gain higher privileges than intended on affected systems. This flaw primarily affects local instances, making it crucial for organizations to assess their security configurations concerning this service.

Potential Impact of CVE-2025-24076

  1. Unauthorized Access to Sensitive Data: The elevation of privileges could allow attackers to gain access to confidential information, which may lead to data leaks or misuse of sensitive organizational data.

  2. System Compromise: An attacker leveraging this vulnerability may gain control over critical system functions, potentially leading to changes in system configurations or installing malware, which can affect system integrity.

  3. Operational Disruption: The ability to escalate privileges may permit an attacker to disrupt normal operations of the affected systems, resulting in downtime, loss of productivity, and financial implications for the organization.

Affected Version(s)

Windows 11 version 22H2 ARM64-based Systems 10.0.22621.0 < 10.0.22621.5039

Windows 11 version 22H3 ARM64-based Systems 10.0.22631.0 < 10.0.22631.5039

Windows 11 Version 23H2 x64-based Systems 10.0.22631.0 < 10.0.22631.5039

News Articles

favicon imageMakeUseOf

This Windows Vulnerability Lets Hackers Into Your PC in Just 300 Milliseconds

Hackers can get into your system almost faster than you can blink.

5 days ago

favicon imageCybersecurityNews

Windows 11 Escalation Vulnerability Let Attackers Gain Admin Access Within 300 Milliseconds

A critical vulnerability in Windows 11 allowed attackers to escalate from a low-privileged user to full system administrator rights in just 300 milliseconds. 

5 days ago

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...
vendor-advisory

CVSS V3.1

Score:
7.3
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Unchanged

Timeline

  • 👾

    Exploit known to exist

  • 📰

    First article discovered by CybersecurityNews

  • Vulnerability published

  • Vulnerability Reserved

.