CVE-2025-0889

216.73.217.22

· Published 26/02/2025 08:13 · Modified 26/02/2025 08:13

Labels: CVE-2025-0889 13061848-ea10-403d-bd75-c83a022c2891 2025-02-26 CVE-2025-0889 CWE-268

Essential information

Published: 26/02/2025 08:13
Modified: 26/02/2025 08:13
Author: —
Creator: —
CISA KEV: No
CWE: —
CVSS vector

Description

Prior to 25.2, a local authenticated attacker can elevate privileges on a system with Privilege Management for Windows installed, via the manipulation of COM objects under certain circumstances where an EPM policy allows for automatic privilege elevation of a user process.

NVD status

Status: Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source: 13061848-ea10-403d-bd75-c83a022c2891
NVD: View on NVD

CVE-2025-0889

Essential information

Description

NVD status

References