CVE-2025-25004

CVE-2025-25004

Name

CVE-2025-25004

Description

Improper access control in Microsoft PowerShell allows an authorized attacker to elevate privileges locally.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
vendor-advisory	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-25004

Type

URI

vendor-advisory

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-25004

Match rules

CPE URI	Source package	Min version	Max version
	windows-10-version-1809	>= 10.0.17763.0	< 10.0.17763.7919
	windows-server-2019	>= 10.0.17763.0	< 10.0.17763.7919
	windows-server-2019-(server-core-installation)	>= 10.0.17763.0	< 10.0.17763.7919
	windows-server-2022	>= 10.0.20348.0	< 10.0.20348.4294
	windows-10-version-21h2	>= 10.0.19044.0	< 10.0.19044.6456
	windows-11-version-22h2	>= 10.0.22621.0	< 10.0.22621.6060
	windows-10-version-22h2	>= 10.0.19045.0	< 10.0.19045.6456
	windows-server-2025-(server-core-installation)	>= 10.0.26100.0	< 10.0.26100.6899
	windows-11-version-25h2	>= 10.0.26200.0	< 10.0.26200.6899
	windows-11-version-22h3	>= 10.0.22631.0	< 10.0.22631.6060
	windows-11-version-23h2	>= 10.0.22631.0	< 10.0.22631.6060
	windows-server-2022,-23h2-edition-(server-core-installation)	>= 10.0.25398.0	< 10.0.25398.1913
	windows-11-version-24h2	>= 10.0.26100.0	< 10.0.26100.6899
	windows-server-2025	>= 10.0.26100.0	< 10.0.26100.6899
	windows-10-version-1507	>= 10.0.10240.0	< 10.0.10240.21161
	windows-10-version-1607	>= 10.0.14393.0	< 10.0.14393.8519
	windows-server-2016	>= 10.0.14393.0	< 10.0.14393.8519
	windows-server-2016-(server-core-installation)	>= 10.0.14393.0	< 10.0.14393.8519
	windows-server-2008-service-pack-2	>= 6.0.6003.0	< 6.0.6003.23571
	windows-server-2008-service-pack-2-(server-core-installation)	>= 6.0.6003.0	< 6.0.6003.23571
	windows-server-2008-r2-service-pack-1	>= 6.1.7601.0	< 6.1.7601.27974
	windows-server-2008-r2-service-pack-1-(server-core-installation)	>= 6.1.7601.0	< 6.1.7601.27974
	windows-server-2012	>= 6.2.9200.0	< 6.2.9200.25722
	windows-server-2012-(server-core-installation)	>= 6.2.9200.0	< 6.2.9200.25722
	windows-server-2012-r2	>= 6.3.9600.0	< 6.3.9600.22824
	windows-server-2012-r2-(server-core-installation)	>= 6.3.9600.0	< 6.3.9600.22824
	powershell-7.4	>= 7.4.0	< 7.4.13
	powershell-7.5	>= 7.5.0	< 7.5.4
`cpe:2.3:a:microsoft:powershell::::::::`	powershell	>= 7.4	< 7.4.13
`cpe:2.3:a:microsoft:powershell::::::::`	powershell	>= 7.5	< 7.5.4
`cpe:2.3:o:microsoft:windows_10_1507:::::::x64:*`	windows_10_1507	>= None	< 10.0.10240.21161
`cpe:2.3:o:microsoft:windows_10_1607:::::::x64:*`	windows_10_1607	>= None	< 10.0.14393.8519
`cpe:2.3:o:microsoft:windows_10_1809:::::::x64:*`	windows_10_1809	>= None	< 10.0.17763.7919
`cpe:2.3:o:microsoft:windows_10_21h2::::::::`	windows_10_21h2	>= None	< 10.0.19044.6456
`cpe:2.3:o:microsoft:windows_10_22h2::::::::`	windows_10_22h2	>= None	< 10.0.19045.6456
`cpe:2.3:o:microsoft:windows_11_22h2::::::::`	windows_11_22h2	>= None	< 10.0.22621.6060
`cpe:2.3:o:microsoft:windows_11_23h2::::::::`	windows_11_23h2	>= None	<= 10.0.22631.6060
`cpe:2.3:o:microsoft:windows_11_24h2::::::::`	windows_11_24h2	>= None	< 10.0.26100.6899
`cpe:2.3:o:microsoft:windows_11_25h2::::::::`	windows_11_25h2	>= None	< 10.0.26200.6899
`cpe:2.3:o:microsoft:windows_server_2008:-:sp2:::::x64:*`	windows_server_2008	== None	== -
`cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:::::x64:*`	windows_server_2008	== None	== r2
`cpe:2.3:o:microsoft:windows_server_2012:-:::::::*`	windows_server_2012	== None	== -
`cpe:2.3:o:microsoft:windows_server_2012:r2:::::::*`	windows_server_2012	== None	== r2
`cpe:2.3:o:microsoft:windows_server_2016::::::::`	windows_server_2016	>= None	<= 10.0.14393.8519
`cpe:2.3:o:microsoft:windows_server_2019::::::::`	windows_server_2019	>= None	< 10.0.17763.7919
`cpe:2.3:o:microsoft:windows_server_2022::::::::`	windows_server_2022	>= None	< 10.0.20348.4294
`cpe:2.3:o:microsoft:windows_server_2022_23h2::::::::`	windows_server_2022_23h2	>= None	< 10.0.25398.1913
`cpe:2.3:o:microsoft:windows_server_2025::::::::`	windows_server_2025	>= None	<= 10.0.26100.6899

CPE URI

Source package

Min version

Max version

windows-10-version-1809

>= 10.0.17763.0

< 10.0.17763.7919

windows-server-2019

>= 10.0.17763.0

< 10.0.17763.7919

windows-server-2019-(server-core-installation)

>= 10.0.17763.0

< 10.0.17763.7919

windows-server-2022

>= 10.0.20348.0

< 10.0.20348.4294

windows-10-version-21h2

>= 10.0.19044.0

< 10.0.19044.6456

windows-11-version-22h2

>= 10.0.22621.0

< 10.0.22621.6060

windows-10-version-22h2

>= 10.0.19045.0

< 10.0.19045.6456

windows-server-2025-(server-core-installation)

>= 10.0.26100.0

< 10.0.26100.6899

windows-11-version-25h2

>= 10.0.26200.0

< 10.0.26200.6899

windows-11-version-22h3

>= 10.0.22631.0

< 10.0.22631.6060

windows-11-version-23h2

>= 10.0.22631.0

< 10.0.22631.6060

windows-server-2022,-23h2-edition-(server-core-installation)

>= 10.0.25398.0

< 10.0.25398.1913

windows-11-version-24h2

>= 10.0.26100.0

< 10.0.26100.6899

windows-server-2025

>= 10.0.26100.0

< 10.0.26100.6899

windows-10-version-1507

>= 10.0.10240.0

< 10.0.10240.21161

windows-10-version-1607

>= 10.0.14393.0

< 10.0.14393.8519

windows-server-2016

>= 10.0.14393.0

< 10.0.14393.8519

windows-server-2016-(server-core-installation)

>= 10.0.14393.0

< 10.0.14393.8519

windows-server-2008-service-pack-2

>= 6.0.6003.0

< 6.0.6003.23571

windows-server-2008-service-pack-2-(server-core-installation)

>= 6.0.6003.0

< 6.0.6003.23571

windows-server-2008-r2-service-pack-1

>= 6.1.7601.0

< 6.1.7601.27974

windows-server-2008-r2-service-pack-1-(server-core-installation)

>= 6.1.7601.0

< 6.1.7601.27974

windows-server-2012

>= 6.2.9200.0

< 6.2.9200.25722

windows-server-2012-(server-core-installation)

>= 6.2.9200.0

< 6.2.9200.25722

windows-server-2012-r2

>= 6.3.9600.0

< 6.3.9600.22824

windows-server-2012-r2-(server-core-installation)

>= 6.3.9600.0

< 6.3.9600.22824

powershell-7.4

>= 7.4.0

< 7.4.13

powershell-7.5

>= 7.5.0

< 7.5.4

cpe:2.3:a:microsoft:powershell:*:*:*:*:*:*:*:*

powershell

>= 7.4

< 7.4.13

cpe:2.3:a:microsoft:powershell:*:*:*:*:*:*:*:*

powershell

>= 7.5

< 7.5.4

cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x64:*

windows_10_1507

>= None

< 10.0.10240.21161

cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*

windows_10_1607

>= None

< 10.0.14393.8519

cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*

windows_10_1809

>= None

< 10.0.17763.7919

cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:*

windows_10_21h2

>= None

< 10.0.19044.6456

cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:*

windows_10_22h2

>= None

< 10.0.19045.6456

cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:*

windows_11_22h2

>= None

< 10.0.22621.6060

cpe:2.3:o:microsoft:windows_11_23h2:*:*:*:*:*:*:*:*

windows_11_23h2

>= None

<= 10.0.22631.6060

cpe:2.3:o:microsoft:windows_11_24h2:*:*:*:*:*:*:*:*

windows_11_24h2

>= None

< 10.0.26100.6899

cpe:2.3:o:microsoft:windows_11_25h2:*:*:*:*:*:*:*:*

windows_11_25h2

>= None

< 10.0.26200.6899

cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*

windows_server_2008

== None

== -

cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*

windows_server_2008

== None

== r2

cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*

windows_server_2012

== None

== -

cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*

windows_server_2012

== None

== r2

cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*

windows_server_2016

>= None

<= 10.0.14393.8519

cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*

windows_server_2019

>= None

< 10.0.17763.7919

cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*

windows_server_2022

>= None

< 10.0.20348.4294

cpe:2.3:o:microsoft:windows_server_2022_23h2:*:*:*:*:*:*:*:*

windows_server_2022_23h2

>= None

< 10.0.25398.1913

cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*:*

windows_server_2025

>= None

<= 10.0.26100.6899

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
powershell	edge-community	7.4.6-r2	Antoine Martin (ayakael) <dev@ayakael.net>	possibly vulnerable
powershell	edge-community	7.5.0-r0	Antoine Martin (ayakael) <dev@ayakael.net>	possibly vulnerable
powershell	edge-community	7.5.1-r0	Antoine Martin (ayakael) <dev@ayakael.net>	possibly vulnerable
powershell	edge-community	7.5.2-r0	Antoine Martin (ayakael) <dev@ayakael.net>	possibly vulnerable
powershell	edge-community	7.5.3-r0	Antoine Martin (ayakael) <dev@ayakael.net>	possibly vulnerable
powershell	3.22-community	7.4.6-r2	Antoine Martin (ayakael) <dev@ayakael.net>	possibly vulnerable
powershell	3.22-community	7.5.2-r0	Antoine Martin (ayakael) <dev@ayakael.net>	possibly vulnerable
powershell	3.22-community	7.5.3-r0	Antoine Martin (ayakael) <dev@ayakael.net>	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

powershell

edge-community

7.4.6-r2

Antoine Martin (ayakael) <dev@ayakael.net>

possibly vulnerable

powershell

edge-community