CVE-2025-60721: Windows Administrator Protection Elevation of Privilege Vulnerability
Overview
- Severity
- High (CVSS 7.8)
- CVSS Vector
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:T/RC:C
- Category
- Elevation of Privilege
- Exploit Status
- Not Exploited
- Exploitation Likelihood
- Less Likely
- Patch Tuesday
- 2025-Nov
- Released
- 2025-11-11
- EPSS Score
- 0.04% (percentile: 14.0%)
Description
Privilege context switching error in Windows Administrator Protection allows an authorized attacker to elevate privileges locally.
FAQ
What privileges could be gained by an attacker who successfully exploited the vulnerability?
With successful exploitation of this vulnerability, an attacker could gain elevated privileges equivalent to a system managed administrator, allowing them to execute arbitrary code with high integrity and bypass administrator protections.
Affected Products (4)
Windows
- Windows 11 Version 25H2 for x64-based Systems
- Windows 11 Version 25H2 for ARM64-based Systems
- Windows 11 Version 24H2 for ARM64-based Systems
- Windows 11 Version 24H2 for x64-based Systems
Security Updates (2)
Acknowledgments
James Forshaw with Google Project Zero, James Forshaw with Google Project Zero
Revision History
- 2025-11-11: Information published.