Elevation of Privilege Vulnerability in Microsoft Windows
CVE-2025-25008
Key Information:
- Vendor
Microsoft
- Vendor
- CVE Published:
- 11 March 2025
What is CVE-2025-25008?
An issue in Microsoft Windows allows authorized users to exploit improper link resolution before file access, known as link following. This vulnerability grants attackers the ability to elevate their privileges locally, potentially enabling them to execute unauthorized commands and access restricted information within the system. Organizations using affected versions of Windows should take immediate actions to mitigate risks associated with this vulnerability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
Windows Server 2016 (Server Core installation) x64-based Systems 10.0.14393.0 < 10.0.14393.7876
Windows Server 2016 x64-based Systems 10.0.14393.0 < 10.0.14393.7876
Windows Server 2019 (Server Core installation) x64-based Systems 10.0.17763.0 < 10.0.17763.7009
References
CVSS V3.1
Timeline
Vulnerability published
Vulnerability Reserved