Command Injection Vulnerability in Windows PowerShell by Microsoft
CVE-2025-54100

7.8HIGH

Key Information:

Vendor: Microsoft
Status: Windows 10 Version 1809; Windows Server 2019; Windows Server 2019 (server Core Installation); Windows Server 2022
Vendor: CVE Published:; 9 December 2025

Badges

📈 Score: 477👾 Exploit Exists📰 News Worthy

What is CVE-2025-54100?

CVE-2025-54100 is a command injection vulnerability identified in Microsoft Windows PowerShell, a powerful task automation and configuration management framework widely used by system administrators and developers. This vulnerability arises from improper neutralization of special elements within commands executed in PowerShell, which can allow unauthorized attackers to execute arbitrary code locally on affected systems. Given PowerShell's extensive permissions and capabilities, such exploitation could lead to severe ramifications for organizations, including unauthorized access to sensitive data, the ability to deploy malicious payloads, and the disruption of critical services.

Potential impact of CVE-2025-54100

Unauthorized Code Execution: The vulnerability allows attackers to execute arbitrary commands locally, which could lead to unauthorized access to system resources and sensitive information, thereby compromising the integrity and confidentiality of organizational data.
Increased Risk of Malware Deployment: Successful exploitation may enable attackers to install malware, ransomware, or other malicious software on affected systems, potentially leading to broader network compromises and extensive data breaches.
Operational Disruption: An attacker leveraging this vulnerability could disrupt normal business operations, either by incapacitating essential systems or by manipulating system configurations, leading to potential downtime and loss of productivity.