CVE-2025-21275

CVE-2025-21275 is an Elevation of Privilege vulnerability in the Windows App Package Installer. It stems from improper authorization (CWE-285) and affects Windows systems utilizing this component for installing app packages. The vulnerability received a CVSS v3.1 base score of 7.8 (High), with the vector AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H, indicating local access is required, low attack complexity, low privileges needed, no user interaction, unchanged scope, and high impacts to confidentiality, integrity, and availability.

A local attacker with low-level privileges can exploit this vulnerability to elevate their privileges on the affected system. Successful exploitation allows the attacker to gain high-level access, potentially compromising sensitive data, modifying system files, or disrupting services, as reflected in the high impact ratings across confidentiality, integrity, and availability.

Microsoft has published details and mitigation guidance in its update guide at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21275, which security practitioners should consult for patching instructions and workarounds. The vulnerability was published on 2025-01-14.