Описание
Improper access control in Customer Experience Improvement Program (CEIP) allows an authorized attacker to elevate privileges locally.
Improper access control in Customer Experience Improvement Program (CEIP) allows an authorized attacker to elevate privileges locally.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2025-59512
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59512
- https://www.vicarius.io/vsociety/posts/cve-2025-59512-detection-script-eop-vulnerability-affecting-ceip-by-microsoft
- https://www.vicarius.io/vsociety/posts/cve-2025-59512-mitigation-script-eop-vulnerability-affecting-ceip-by-microsoft
Связанные уязвимости
CVSS3: 7.8
nvd
3 месяца назад
Improper access control in Customer Experience Improvement Program (CEIP) allows an authorized attacker to elevate privileges locally.
CVSS3: 7.8
msrc
3 месяца назад
Customer Experience Improvement Program (CEIP) Elevation of Privilege Vulnerability
CVSS3: 7.8
fstec
3 месяца назад
Уязвимость компонента Customer Experience Improvement Program (CEIP) операционных систем Windows, позволяющая нарушителю повысить свои привилегии