Return to CVE list

CVE-2025-27731

7.8

Critical

CVE-2025-27731

8 Apr 2025

secure@microsoft.com

Awaiting Analysis

View on MITRE Find on GitHub

Description

Improper input validation in OpenSSH for Windows allows an authorized attacker to elevate privileges locally.

Exploits

No known exploits found for this CVE.

Search Exploit-DB

References

secure@microsoft.com

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27731