When a vendor-side advisory and a CVE identifier don’t line up, the first — and most important — job for defenders and researchers is to stop, verify, and update the record. I tried to open the MSRC page you gave and could not find any public advisory, nor could I find any authoritative...
applocker
cve-2025-29975
cve-2025-47993
cve-2025-49738
link following
local eop
ntfs reparse point
patch management
pc manager
privilege escalation
soc playbook
symlink abuse
sysmon
threat hunting
wdac
windows security
Improper link resolution before file access, often referred to as "link following," represents a recurring and serious class of vulnerabilities in modern software, and with the disclosure of CVE-2025-49738 in Microsoft PC Manager, this long-standing issue has found a new foothold in a widely...
cve-2025-49738
cybersecurity threats
endpoint security
file integrity
file system security
link following attack
malware vulnerabilities
microsoft pc manager
privilege escalation
privilege escalation prevention
security best practices
security update
symlink exploits
symlink vulnerabilities
system hardening
system privileges
windows defender
windows patch
windows security
windows vulnerabilities