CNNVD-202510-1821 Information

CNNVD ID

CNNVD-202510-1821

Related CVE

CVE-2025-25004

• CNNVD Published: 2025-10-14

Description (Chinese)

Microsoft PowerShell Utility是美国微软（Microsoft）公司的一个实用程序模块。该模块包括了许多PowerShell的基础管理命令。 Microsoft PowerShell Utility存在访问控制错误漏洞，该漏洞源于攻击者利用该漏洞可以提升权限。

Description (English)

Microsoft PowerShell Utility is a practical program module for Microsoft (MSC) in the United States. The module includes a number of PowerShell base management orders. Microsoft PowerShell Utility had an access control error, which stemmed from the fact that the attackers could use that loophole to enhance their access.

Hazard Level

Medium

Vulnerability Type

访问控制错误

Affected Vendor

微软

Published

2025-10-14

Last Modified

2026-02-24

References

https://vigilance.fr/vulnerability/PowerShell-privilege-escalation-dated-14-10-2025-48473 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-25004

Patch

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-25004