You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve 2025 59497
About this tag
CVE-2025-59497 is a time-of-check time-of-use (TOCTOU) race condition vulnerability in Microsoft Defender for Endpoint on Linux. Discovered and disclosed by Microsoft, this flaw can be exploited by an authorized local attacker to cause a denial-of-service (DoS) condition. Microsoft released a security update on October 14, 2025 to address the issue. Administrators are advised to prioritize host-level remediation and enforce strict local access controls to mitigate the risk. The vulnerability affects the mdatp agent commonly used in enterprise environments for endpoint protection on Linux systems.
Microsoft has published an advisory for CVE-2025-59497, a time-of-check time-of-use (TOCTOU) race condition in Microsoft Defender for Endpoint on Linux that can be triggered by an authorized local actor to produce a denial-of-service (DoS) condition; a security update was released on October 14...