Primary

Context

Microsoft Windows Error Reporting Privilege Escalation Vulnerability

Vulnerability

A vulnerability allowing improper access control in the Windows Error Reporting service has been identified. This issue enables an authorized attacker to locally elevate privileges. The vulnerability affects multiple Windows 11 versions and Windows Server 2025, as well as Windows Server 2022, 23H2 Edition (Server Core installation)

Impact

Exploitation of this vulnerability could lead to unauthorized elevation of privileges, allowing an attacker to gain administrator rights.

Remediation

Users can download the security update for this vulnerability via the Microsoft Update Catalog. For Windows Server 2022, 23H2 Edition (Server Core installation), the security update is also available through the Microsoft Update Catalog.

Added: Oct 14, 2025, 7:42 PM

Updated: Oct 14, 2025, 7:42 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

7.5

exploitability

3.3

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

7.5

exploitability

3.3

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Windows Error Reporting Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Microsoft Windows Server 2025

Microsoft Windows 11

Microsoft Windows Server 2022

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating