Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/07/30 3:47 p.m.9 views

CVE-2025-6250

Prior to 25.4.270.0, when wmic.exe is elevated with a full admin token the user can stop the Defendpoint service, bypassing anti-tamper protections. Once the service is disabled, the malicious user can add themselves to Administrators group and run any process with elevated permissions...

7.1CVSS6.4AI score0.00158EPSS
Exploits0References1
NVD
NVD
added 2025/07/28 4:15 p.m.9 views

CVE-2025-6250

Prior to 25.4.270.0, when wmic.exe is elevated with a full admin token the user can stop the Defendpoint service, bypassing anti-tamper protections. Once the service is disabled, the malicious user can add themselves to Administrators group and run any process with elevated permissions...

7.1CVSS0.00158EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/28 3:40 p.m.3 views

CVE-2025-6250 Privilege Management for Windows - Elevation of Privilege

Prior to 25.4.270.0, when wmic.exe is elevated with a full admin token the user can stop the Defendpoint service, bypassing anti-tamper protections. Once the service is disabled, the malicious user can add themselves to Administrators group and run any process with elevated permissions...

7.1CVSS6.5AI score0.00158EPSS
Exploits0References1
CVE
CVE
added 2025/07/28 3:40 p.m.33 views

CVE-2025-6250

CVE-2025-6250 — Normal mode : Multiple sources describe a privilege escalation in BeyondTrust Privilege Management for Windows prior to 25.4.270.0 via wmic.exe. When a user runs wmic.exe with a full admin token, they can stop the Defendpoint service, bypass anti-tamper protections, and add themse...

7.1CVSS6.5AI score0.00158EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/07/28 3:40 p.m.13 views

CVE-2025-6250 Privilege Management for Windows - Elevation of Privilege

Prior to 25.4.270.0, when wmic.exe is elevated with a full admin token the user can stop the Defendpoint service, bypassing anti-tamper protections. Once the service is disabled, the malicious user can add themselves to Administrators group and run any process with elevated permissions...

7.1CVSS0.00158EPSS
Exploits0References1
Rows per page
Query Builder