Microsoft’s security advisory for CVE-2025-54094 identifies a type‑confusion flaw in the Windows Defender Firewall Service that can be triggered by an authorized local actor to perform a local Elevation of Privilege (EoP) — in short, an attacker with the ability to run code as a non‑privileged...
application control
cve-2025-54094
defense in depth
edr
local attack
local eop
memory safety
mpssvc
msrc
patch management
privilege
privilege escalation
risk assessment
security advisory
type confusion
vulnerability
windows defender firewall
