7 matches found
CVE-2025-48820
Improper link resolution before file access 'link following' in Windows AppX Deployment Service allows an authorized attacker to elevate privileges locally...
Microsoft Windows Multiple Vulnerabilities (KB5062552)
This host is missing an important security update according to Microsoft KB5062552 SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
CVE-2025-48820
CVE-2025-48820 affects Windows AppX Deployment Service. It stems from improper link resolution before file access ("link following"), allowing an authenticated local attacker to elevate privileges. CVSS v3.1 score 7.8 (LOCAL, LOW privileges required, high confidentiality/integrity/availability im...
CVE-2025-48820 Windows AppX Deployment Service Elevation of Privilege Vulnerability
...
CVE-2025-48820
creationtimestamp| type| source ---|---|--- 2025-07-08 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-577/ 2025-07-08 15:56:31+00:00| seen| https://www.thezdi.com/blog/2025/7/8/the-july-2025-security-update-review...
KB5062561: Windows 10 LTS 1507 Security Update (July 2025)
The remote Windows host is missing security update 5062561. It is, therefore, affected by multiple vulnerabilities - Buffer over-read in Windows TDX.sys allows an authorized attacker to elevate privileges locally. CVE-2025-49659 - Improper link resolution before file access 'link following' in...
KB5062570: Windows Server version 23H2 Security Update (July 2025)
The remote Windows host is missing security update 5062570. It is, therefore, affected by multiple vulnerabilities - Buffer over-read in Windows TDX.sys allows an authorized attacker to elevate privileges locally. CVE-2025-49659 - Improper link resolution before file access 'link following' in...