VYPR
Unrated severityNVD Advisory· Published Mar 11, 2025· Updated Feb 13, 2026

Microsoft Windows Cross Device Service Elevation of Privilege Vulnerability

CVE-2025-24076

Description

Improper access control in Windows Cross Device Service allows an authorized attacker to elevate privileges locally.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • Microsoft/Windows 11 23h2cpe-rescue2 versions
    10.0.22621.0+ 1 more
    • (no CPE)range: 10.0.22621.0
    • (no CPE)range: 10.0.22631.0
  • Microsoft/Windows 11 version 22H3v5
    Range: 10.0.22631.0
  • Range: 10.0.26100.0
  • Microsoft/Windows Server 2022, 23H2 Edition (Server Core installation)v5
    Range: 10.0.25398.0
  • Range: 10.0.26100.0
  • Microsoft/Windows Server 2025 (Server Core installation)v5
    Range: 10.0.26100.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.