Return to CVE list

CVE-2025-24072

7.8

Critical

CVE-2025-24072

11 Mar 2025

secure@microsoft.com

Awaiting Analysis

View on MITRE Find on GitHub

Description

Use after free in Microsoft Local Security Authority Server (lsasrv) allows an authorized attacker to elevate privileges locally.

Exploits

No known exploits found for this CVE.

Search Exploit-DB

References

secure@microsoft.com

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24072