CVE-2025-59199

HIGH

Improper access control in Software Protection Platform (SPP) allows an authorized attacker to elevate privileges locally.

CVSS v3.1 Score

7.8
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
LOCAL
Complexity
LOW
Privileges
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH
Published: 10/14/2025Modified: 10/30/2025

Related Intelligence (1)

MEDIUMVulnerability

Click Or Trick (CVE-2025-59199): Escaping the Sandbox with Windows URIs

[object Object]

CVE-2025-59199
r/blueteamsec

References (1)

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59199Vendor Advisory