Description
Time-of-check time-of-use (toctou) race condition in Windows Local Security Authority (LSA) allows an authorized attacker to elevate privileges locally.
Related CPE's
o
microsoft
windows_10_1507
2
o
microsoft
windows_10_1607
2
o
microsoft
windows_10_1809
2
Vulnerable
Vulnerable
Vulnerable
Vulnerable
Vulnerable
o
microsoft
windows_server_2008
3
o
microsoft
windows_server_2012
2
Vulnerable
Vulnerable
Vulnerable
Vulnerable
Vulnerable
CVSS impact metrics
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
7 · High
Information
Source identifier
Vulnerability status
Analyzed
Published
2025-04-08T16:15:44.857Z
9 months agoLast modified
2025-07-07T16:57:42.343Z
6 months ago