Microsoft’s advisory wording that CVE-2025-59225 is a “Remote Code Execution” vulnerability is not a contradiction with its CVSS Attack Vector of AV:L (Local) — the two statements describe different aspects of the threat: one describes the attacker’s position and delivery capability, the other...