Elevation of Privilege Vulnerability in Microsoft Defender for Endpoint
CVE-2025-47161

7.8HIGH

Key Information:

Vendor: Microsoft
Status: Microsoft Defender For Endpoint For Linux
Vendor: CVE Published:; 15 May 2025

What is CVE-2025-47161?

An elevation of privilege vulnerability exists in Microsoft Defender for Endpoint, allowing attackers to gain elevated access to system resources. This could potentially allow unauthorized actions that compromise the security integrity of the endpoint. Security professionals and IT administrators should stay vigilant and ensure that proper patches and updates are applied to mitigate potential risks associated with this vulnerability.

Affected Version(s)

Microsoft Defender for Endpoint for Linux Unknown 101.0.0 < 101.25022.0002

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...

vendor-advisory

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 15, 2025
Vulnerability Reserved
May 1, 2025