Privilege Escalation Vulnerability in Windows Administrator Protection by Microsoft
CVE-2025-60718
Key Information:
- Vendor
Microsoft
- Vendor
- CVE Published:
- 11 November 2025
What is CVE-2025-60718?
CVE-2025-60718 is a privilege escalation vulnerability found in Microsoft's Windows Administrator Protection. This vulnerability emerges from an untrusted search path, which can be exploited by an authorized attacker to gain elevated privileges on a system. Such privilege escalation can allow the attacker to execute operations or commands that would typically require higher permissions. The potential consequences of this vulnerability may lead organizations to face unauthorized access to sensitive data or critical system configurations that could jeopardize the integrity and security of their systems.
Potential impact of CVE-2025-60718
-
Unauthorized Data Access: With elevated privileges, an attacker could gain unchecked access to sensitive information, potentially leading to data breaches that could involve personal, financial, or proprietary data.
-
System Configuration Manipulation: Exploiting this vulnerability could allow an attacker to make unauthorized changes to system configurations, potentially destabilizing systems or embedding backdoors for future attacks.
-
Increased Malware Risks: The ability to escalate privileges could serve as a pathway for further criminal activities, such as deploying ransomware or other forms of malware, leading to additional financial and operational impacts on affected organizations.
Affected Version(s)
Windows 11 Version 24H2 ARM64-based Systems 10.0.26100.0 < 10.0.26100.7171
Windows 11 Version 25H2 Unknown 10.0.26200.0 < 10.0.26200.7171