Microsoft Windows AppX Deployment Service Elevation of Privilege Vulnerability

A vulnerability has been identified in the Windows AppX Deployment Service, where improper link resolution before file access allows an authorized attacker to elevate privileges locally. This issue affects multiple Windows versions, including Windows 10, Windows 11, Windows Server 2016, and Windows Server 2022. The vulnerability arises from improper link resolution, which could enable an attacker to manipulate file access in a way that escalates privileges.

Impact

Exploitation of this vulnerability could allow an authenticated attacker to delete targeted files, potentially leading to the acquisition of SYSTEM privileges.

Remediation

Users can apply the security updates provided by Microsoft to address this vulnerability. These security updates can be downloaded via the Microsoft Update Catalog. Specific update details can be found in the Microsoft Knowledge Base articles KB5062552, KB5062553, KB5062554, KB5062557, KB5062560, KB5062561, KB5062570, and KB5062572.