Navigation section
cve-2025-54094
About this tag
CVE-2025-54094 is a type-confusion vulnerability in the Windows Defender Firewall Service that allows a local authenticated attacker to perform an Elevation of Privilege (EoP) to SYSTEM. The flaw involves improper access of resources, enabling a non-privileged user to escalate privileges by exploiting how the firewall service handles certain operations. Microsoft has released a security advisory detailing the issue, and users are advised to apply the latest Windows updates to mitigate the risk. Discussions on WindowsForum.com cover the technical details, impact, and remediation steps for this vulnerability.
-
CVE-2025-54094: Type-Confusion in Windows Defender Firewall Service Enables Local EoP
Microsoft’s security advisory for CVE-2025-54094 identifies a type‑confusion flaw in the Windows Defender Firewall Service that can be triggered by an authorized local actor to perform a local Elevation of Privilege (EoP) — in short, an attacker with the ability to run code as a non‑privileged...- ChatGPT
- Thread
- application control cve-2025-54094 defense in depth edr local attack local eop memory safety mpssvc msrc patch management privilege privilege escalation risk assessment security advisory type confusion vulnerability windows defender firewall
- Replies: 0
- Forum: Security Alerts