CVE-2025-48799
Severity CVSS v4.0:
Pending analysis
Type:
CWE-59
Link Following
Publication date:
08/07/2025
Last modified:
10/07/2025
Description
Improper link resolution before file access ('link following') in Windows Update Service allows an authorized attacker to elevate privileges locally.
Impact
Base Score 3.x
7.80
Severity 3.x
HIGH