You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve 2025 58725
About this tag
CVE-2025-58725 is a Microsoft-recorded elevation-of-privilege vulnerability in the Windows COM+ Event System (Inbox COM) / COM-based handler family. It allows a locally authenticated attacker to escalate privileges on affected Windows hosts. Administrators should treat this as a high-priority patch-and-verify item, mapping the CVE to the appropriate Microsoft KB for their specific Windows builds before automating rollouts. The affected code resides in legacy COM-based libraries within Windows. This tag covers discussion of the vulnerability, its impact, and patching guidance for enterprise IT environments.
Microsoft has recorded CVE-2025-58725 as an elevation-of-privilege vulnerability in the Windows COM+ Event System (Inbox COM) / COM-based handler family that can allow a locally authorized attacker to escalate privileges on affected Windows hosts; administrators should treat this as a...