- Description
- Improper link resolution before file access ('link following') in Windows Update Service allows an authorized attacker to elevate privileges locally.
- Source
- secure@microsoft.com
- NVD status
- Analyzed
- Products
- windows_10_1607, windows_10_1809, windows_10_21h2, windows_10_22h2, windows_11_22h2, windows_11_23h2, windows_11_24h2, windows_server_2025
CVSS 3.1
- Type
- Secondary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- secure@microsoft.com
- CWE-59
- Hype score
- Not currently trending
#github Wh04m1001/CVE-2025-48799 Stars: 162 Language: #C++ https://t.co/AdV1OtMG2w
@githubgod
3 Dec 2025
23 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Micropatches Released for Windows Update Service Elevation of Privilege Vulnerability (CVE-2025-48799) https://t.co/bxSk81HD5P https://t.co/UbDnfipIU4
@0patch
12 Aug 2025
1581 Impressions
6 Retweets
13 Likes
2 Bookmarks
1 Reply
0 Quotes
CVE ID : CVE-2025-48799 System : windows Type : prvilage esclation CNA Score : 7.8 Exploit : PoC Anther PoC
@CyberYetixx
29 Jul 2025
19 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
This is PoC for CVE-2025-48799, an elevation of privilege vulnerability in Windows Update service. https://t.co/lvkdODTXLb
@Dinosn
18 Jul 2025
7493 Impressions
44 Retweets
169 Likes
70 Bookmarks
1 Reply
0 Quotes
''GitHub - Wh04m1001/CVE-2025-48799'' #infosec #pentest #redteam #blueteam https://t.co/VfctxXde5U
@CyberWarship
17 Jul 2025
4327 Impressions
21 Retweets
64 Likes
30 Bookmarks
0 Replies
0 Quotes
🚨 Exploiting #CVE-2025-48799: A #Windows Privilege Escalation Vulnerability https://t.co/z2e5NK4SuK Educational Purposes!
@UndercodeUpdate
9 Jul 2025
2 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-48799 Improper link resolution before file access ('link following') in Windows Update Service allows an authorized attacker to elevate privileges locally. https://t.co/ic2ztFX7RR
@CVEnew
9 Jul 2025
212 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-48799 - PoC for an elevation of privilege vulnerability in Windows Update service. This vulnability affects windows clients (win11/win10) with at least 2 hard drives. https://t.co/jwxAkttgyn https://t.co/CqKpCg4v7G
@freedomhack101
9 Jul 2025
123 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
GitHub - Wh04m1001/CVE-2025-48799 https://t.co/qRlOoPyNkS
@akaclandestine
9 Jul 2025
1802 Impressions
5 Retweets
20 Likes
9 Bookmarks
0 Replies
0 Quotes
🚨 New PoC Released | CVE-2025-48799 A local privilege escalation in Windows Update Service! With multiple drives, Storage Sense can redirect app installs via symlink. The wuauserv service deletes target folders, enabling arbitrary file deletion and elevation. PoC & detai
@HackGitToolkit
9 Jul 2025
24 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
GitHub - Wh04m1001/CVE-2025-48799 - https://t.co/8qZQMlIoKy
@piedpiper1616
9 Jul 2025
4520 Impressions
32 Retweets
82 Likes
24 Bookmarks
0 Replies
0 Quotes
Today MSRC fixed two vulnerabilities I reported a couple months ago. EoP in Windows Update service (affects only windows 11/10 with at least 2 drives) https://t.co/YnCsk1934F EoP in Microsoft PC Manager https://t.co/ssudyvpgDS PoC for CVE-2025-48799: https://t.co/brRVf18DnY
@filip_dragovic
8 Jul 2025
19448 Impressions
80 Retweets
316 Likes
125 Bookmarks
10 Replies
2 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*",
"matchCriteriaId": "3CEAC32A-5246-4F6B-8DD5-E49F3BA621DA",
"versionEndExcluding": "10.0.14393.8246",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
"matchCriteriaId": "E0A0243D-52B4-49AE-B1AE-263640C492B0",
"versionEndExcluding": "10.0.14393.8246",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
"matchCriteriaId": "2062C268-282B-4E52-9F8C-876A2D483EAD",
"versionEndExcluding": "10.0.17763.7558",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
"matchCriteriaId": "00FCA704-C6E0-4DE4-86F0-80552527AE53",
"versionEndExcluding": "10.0.17763.7558",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "50848190-CF61-47F6-90B8-DB0C120749F5",
"versionEndExcluding": "10.0.19044.6093",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "01E62E99-5EDA-487C-A941-E2DA348B501F",
"versionEndExcluding": "10.0.19045.6093",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "76FEE1E8-EB22-4E01-86D7-13B35F9D2876",
"versionEndExcluding": "10.0.22621.5624",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_23h2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "19D0DAB7-4BFF-4BB7-9E0E-B020CF8573C9",
"versionEndExcluding": "10.0.22631.5624",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_24h2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "8E866DB2-9CA7-4BCC-8591-9BC94300B779",
"versionEndExcluding": "10.0.26100.4652",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*:*",
"matchCriteriaId": "10E640FB-32AB-45B6-BC42-56CC587C0A35",
"versionEndExcluding": "10.0.26100.4652",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]