cve 2025 25004

CVE-2025-25004 is a high-severity vulnerability in Microsoft PowerShell that allows an authorized local attacker to elevate privileges due to improper access control (CWE-284). Published on October 14, 2025, the flaw carries a CVSS v3.1 base score of approximately 7.3. Microsoft has released vendor updates to address the issue, and users should consult the official Microsoft Security Update Guide for specific KB articles and affected builds. This tag covers discussions and advisories related to patching and mitigating this PowerShell local privilege escalation vulnerability.