CVE-2025-47956: Windows Security App Spoofing Vulnerability

Overview

Severity

Medium (CVSS 5.5)

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Category

Spoofing

Exploit Status

Not Exploited

Exploitation Likelihood

Less Likely

Patch Tuesday

2025-Jun

Released

2025-06-10

Last Updated

2025-07-15

EPSS Score

1.72% (percentile: 82.4%)

Description

External control of file name or path in Windows Security App allows an authorized attacker to perform spoofing locally.

FAQ

Is more information available about Windows Security App? Yes, please see Stay Protected With the Windows Security App for more information. How do I know if I'm protected from this vulnerability From the Start menu, type Windows Security and hit Enter. The Windows Security App will be displayed. Click on the Settings control and then click the About link. The current version will be displayed. See that your version is greater than or equal to 1000.27840.0.0.

Affected Products (1)

Windows

• Windows Security App

Acknowledgments

<a href="https://twitter.com/bohops">Jimmy Bayne of IBM X-Force</a>

Revision History

• 2025-06-10: Information published.
• 2025-07-11: Corrected Article and Download entries in the Affected Products table. This is an informational change only.
• 2025-07-15: Updated FAQ information. This is an informational change only.