CVE-2025-24994

Published Mar 11, 2025

Last updated 3 months ago

CVSS high 7.3
Windows Cross Device Service

Overview

AI description

Automated description summarized from trusted sources.

CVE-2025-24994 is a vulnerability found in the Windows Cross Device Service. It stems from improper access control, which could allow an attacker with authorization to elevate their privileges on a local system. The vulnerability was published on March 11, 2025. Microsoft is listed as the assigning CNA (CVE Numbering Authority).

Description
Improper access control in Windows Cross Device Service allows an authorized attacker to elevate privileges locally.
Source
secure@microsoft.com
NVD status
Received

Risk scores

CVSS 3.1

Type
Primary
Base score
7.3
Impact score
5.9
Exploitability score
1.3
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Severity
HIGH

Weaknesses

secure@microsoft.com
CWE-284

Social media

Hype score
Not currently trending

  1. 🔓 Gaining SYSTEM on Windows 11 with a 300ms window? A real-world DLL hijack + clever API interception exposed CVE-2025-24076 & CVE-2025-24994. Learn how it worked & how to defend. 👇 #Windows11 #CVE #DLLHijacking #Infosec #CyberSecurity https://t.co/41KtQGJurm

    @threatsbank

    21 May 2025

    9 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. 300 Milliseconds to Admin: Mastering DLL Hijacking and Hooking to Win the Race (CVE-2025-24076 and CVE-2025-24994) : https://t.co/tKnRsUwr4I https://t.co/JVFPyGsLvp

    @binitamshah

    20 May 2025

    3422 Impressions

    13 Retweets

    48 Likes

    33 Bookmarks

    0 Replies

    0 Quotes

  3. Windows 11 Privilege Escalation Flaws Uncovered: CVE-2025-24076 and CVE-2025-24994 https://t.co/m3mH19iwWW

    @samilaiho

    16 Apr 2025

    1035 Impressions

    4 Retweets

    14 Likes

    5 Bookmarks

    0 Replies

    0 Quotes

  4. Windowsの権限昇格脆弱性CVE-2025-24076及びCVE-2025-24994について。Compass Security社報告。前者はDLLハイジャック。300ミリ秒しか成立タイミングが無かったため、Opportunistic Lockで実行を止め、DetoursライブラリでGetFileVersionInfoExWをインターセプトし書き換え。 https://t.co/g6kkX8FnAR

    @__kokumoto

    16 Apr 2025

    721 Impressions

    0 Retweets

    4 Likes

    1 Bookmark

    0 Replies

    0 Quotes

  5. Windows 11 Privilege Escalation Flaws Uncovered: CVE-2025-24076 and CVE-2025-24994 https://t.co/dUlwa4walR

    @Dinosn

    16 Apr 2025

    1635 Impressions

    6 Retweets

    18 Likes

    9 Bookmarks

    0 Replies

    0 Quotes

  6. 3 milliseconds to admin — Our analyst John Ostrowski turned a DLL hijacking into a reliable local privilege escalation on Windows 11. He chained opportunistic locks, and API hooking to win the race to CVE-2025-24076 & CVE-2025-24994. Read his blog post: https://t.co/UfN6cBazI

    @compasssecurity

    15 Apr 2025

    6490 Impressions

    38 Retweets

    121 Likes

    76 Bookmarks

    2 Replies

    0 Quotes

References

Sources include official advisories and independent security research.