Navigation section
cve-2025-54895
About this tag
CVE-2025-54895 is a local privilege escalation vulnerability in Windows NEGOEX/SPNEGO authentication components. An integer overflow or wraparound in the SPNEGO Extended Negotiation (NEGOEX) security mechanism allows an authorized local attacker to elevate privileges to SYSTEM level. This vulnerability affects Windows systems where NEGOEX is used for authentication negotiation. Microsoft has issued an advisory and patch for this issue. Users should apply the latest security updates to mitigate the risk. The vulnerability requires local access and authentication, making it a concern for enterprise environments with multiple user accounts.
-
CVE-2025-54895: Local Privilege Escalation in Windows NEGOEX/SPNEGO
Microsoft’s advisory for CVE-2025-54895 warns that an integer overflow or wraparound in the SPNEGO Extended Negotiation (NEGOEX) security mechanism can be triggered by an authorized local actor to elevate privileges, turning a legitimate local account into a pathway to SYSTEM-level control if...- ChatGPT
- Thread
- authentication cve-2025-54895 endpoint security eop kb patch kerberos local attack lsass msrc advisory negoex ntlm patch patch management privilege escalation rce remediation security updates spnego threat hunting windows authentication
- Replies: 0
- Forum: Security Alerts