High severityNVD Advisory· Published Oct 14, 2025· Updated Feb 22, 2026
.NET Elevation of Privilege Vulnerability
CVE-2025-55247
Description
Improper link resolution before file access ('link following') in .NET allows an authorized attacker to elevate privileges locally.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
Microsoft.Build.Tasks.CoreNuGet | >= 17.15.0-preview-25277-114, < 18.0.0-preview-25476-107 | 18.0.0-preview-25476-107 |
Microsoft.Build.Tasks.CoreNuGet | >= 17.14.0, < 17.14.28 | 17.14.28 |
Microsoft.Build.Tasks.CoreNuGet | >= 17.12.0, < 17.12.50 | 17.12.50 |
Microsoft.Build.Tasks.CoreNuGet | >= 17.11.0, < 17.11.48 | 17.11.48 |
Microsoft.Build.Tasks.CoreNuGet | >= 17.10.0, < 17.10.46 | 17.10.46 |
Microsoft.Build.Tasks.CoreNuGet | >= 17.8.0, < 17.8.43 | 17.8.43 |
Microsoft.BuildNuGet | >= 17.15.0-preview-25277-114, < 18.0.0-preview-25476-107 | 18.0.0-preview-25476-107 |
Microsoft.BuildNuGet | >= 17.14.0, < 17.14.28 | 17.14.28 |
Microsoft.BuildNuGet | >= 17.12.0, < 17.12.50 | 17.12.50 |
Microsoft.BuildNuGet | >= 17.11.0, < 17.11.48 | 17.11.48 |
Microsoft.BuildNuGet | >= 17.10.0, < 17.10.46 | 17.10.46 |
Microsoft.BuildNuGet | >= 17.8.0, < 17.8.43 | 17.8.43 |
Microsoft.Build.Utilities.CoreNuGet | >= 17.15.0-preview-25277-114, < 18.0.0-preview-25476-107 | 18.0.0-preview-25476-107 |
Microsoft.Build.Utilities.CoreNuGet | >= 17.14.0, < 17.14.28 | 17.14.28 |
Microsoft.Build.Utilities.CoreNuGet | >= 17.12.0, < 17.12.50 | 17.12.50 |
Microsoft.Build.Utilities.CoreNuGet | >= 17.11.0, < 17.11.48 | 17.11.48 |
Microsoft.Build.Utilities.CoreNuGet | >= 17.10.0, < 17.10.46 | 17.10.46 |
Microsoft.Build.Utilities.CoreNuGet | >= 17.8.0, < 17.8.43 | 17.8.43 |
Affected products
35- osv-coords33 versionspkg:bitnami/dotnetpkg:bitnami/dotnet-sdkpkg:nuget/microsoft.buildpkg:nuget/microsoft.build.tasks.corepkg:nuget/microsoft.build.utilities.corepkg:rpm/almalinux/aspnetcore-runtime-8.0pkg:rpm/almalinux/aspnetcore-runtime-9.0pkg:rpm/almalinux/aspnetcore-runtime-dbg-8.0pkg:rpm/almalinux/aspnetcore-runtime-dbg-9.0pkg:rpm/almalinux/aspnetcore-targeting-pack-8.0pkg:rpm/almalinux/aspnetcore-targeting-pack-9.0pkg:rpm/almalinux/dotnetpkg:rpm/almalinux/dotnet-apphost-pack-8.0pkg:rpm/almalinux/dotnet-apphost-pack-9.0pkg:rpm/almalinux/dotnet-hostpkg:rpm/almalinux/dotnet-hostfxr-8.0pkg:rpm/almalinux/dotnet-hostfxr-9.0pkg:rpm/almalinux/dotnet-runtime-8.0pkg:rpm/almalinux/dotnet-runtime-9.0pkg:rpm/almalinux/dotnet-runtime-dbg-8.0pkg:rpm/almalinux/dotnet-runtime-dbg-9.0pkg:rpm/almalinux/dotnet-sdk-8.0pkg:rpm/almalinux/dotnet-sdk-8.0-source-built-artifactspkg:rpm/almalinux/dotnet-sdk-9.0pkg:rpm/almalinux/dotnet-sdk-9.0-source-built-artifactspkg:rpm/almalinux/dotnet-sdk-aot-9.0pkg:rpm/almalinux/dotnet-sdk-dbg-8.0pkg:rpm/almalinux/dotnet-sdk-dbg-9.0pkg:rpm/almalinux/dotnet-targeting-pack-8.0pkg:rpm/almalinux/dotnet-targeting-pack-9.0pkg:rpm/almalinux/dotnet-templates-8.0pkg:rpm/almalinux/dotnet-templates-9.0pkg:rpm/almalinux/netstandard-targeting-pack-2.1
>= 8.0.0, < 8.0.21+ 32 more
- (no CPE)range: >= 8.0.0, < 8.0.21
- (no CPE)range: >= 8.0.0, < 8.0.21
- (no CPE)range: >= 17.15.0-preview-25277-114, < 18.0.0-preview-25476-107
- (no CPE)range: >= 17.15.0-preview-25277-114, < 18.0.0-preview-25476-107
- (no CPE)range: >= 17.15.0-preview-25277-114, < 18.0.0-preview-25476-107
- (no CPE)range: < 8.0.21-1.el8_10
- (no CPE)range: < 9.0.10-1.el8_10
- (no CPE)range: < 8.0.21-1.el8_10
- (no CPE)range: < 9.0.10-1.el8_10
- (no CPE)range: < 8.0.21-1.el8_10
- (no CPE)range: < 9.0.10-1.el8_10
- (no CPE)range: < 9.0.111-1.el8_10
- (no CPE)range: < 8.0.21-1.el8_10
- (no CPE)range: < 9.0.10-1.el8_10
- (no CPE)range: < 9.0.10-1.el8_10
- (no CPE)range: < 8.0.21-1.el8_10
- (no CPE)range: < 9.0.10-1.el8_10
- (no CPE)range: < 8.0.21-1.el8_10
- (no CPE)range: < 9.0.10-1.el8_10
- (no CPE)range: < 8.0.21-1.el8_10
- (no CPE)range: < 9.0.10-1.el8_10
- (no CPE)range: < 8.0.121-1.el8_10
- (no CPE)range: < 8.0.121-1.el8_10
- (no CPE)range: < 9.0.111-1.el8_10
- (no CPE)range: < 9.0.111-1.el8_10
- (no CPE)range: < 9.0.111-1.el8_10
- (no CPE)range: < 8.0.121-1.el8_10
- (no CPE)range: < 9.0.111-1.el8_10
- (no CPE)range: < 8.0.21-1.el8_10
- (no CPE)range: < 9.0.10-1.el8_10
- (no CPE)range: < 8.0.121-1.el8_10
- (no CPE)range: < 9.0.111-1.el8_10
- (no CPE)range: < 9.0.111-1.el8_10
- Microsoft/.NET 8.0v5Range: 8.0.0
- Microsoft/.NET 9.0v5Range: 9.0.0
Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-w3q9-fxm7-j8fqghsaADVISORY
- msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55247ghsavendor-advisorypatchWEB
- nvd.nist.gov/vuln/detail/CVE-2025-55247ghsaADVISORY
- github.com/dotnet/msbuild/security/advisories/GHSA-w3q9-fxm7-j8fqghsaWEB
News mentions
0No linked articles in our index yet.