Primary

Context

Microsoft Xbox Improper Link Resolution Vulnerability Allowing Privilege Escalation

Vulnerability

A vulnerability in Xbox Gaming Services has been identified, allowing an authorized attacker to locally elevate privileges. This issue arises from improper link resolution before file access, commonly referred to as 'link following'.

Impact

Exploitation of this vulnerability could lead to unauthorized deletion of targeted files on the system.

Remediation

Users can download the security update for Xbox Gaming Services from the Microsoft App Store. The update is available for version 30.104.13001.0.

Added: Sep 9, 2025, 5:45 PM

Updated: Sep 9, 2025, 5:45 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

0.0

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

0.0

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Xbox Improper Link Resolution Vulnerability Allowing Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating