CVE-2025-29795

High

Published: 23 March 2025

Published

23 March 2025

Modified

09 July 2025

KEV Added

—

Patch

—

CVSS Score 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score 0.0040 60.4th percentile

Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Description

Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.

Security Summary

CVE-2025-29795 is an improper link resolution before file access vulnerability, commonly referred to as 'link following', affecting Microsoft Edge (Chromium-based). Published on 2025-03-23, the issue is classified under CWE-59 and carries a CVSS v3.1 base score of 7.8 (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H), indicating high severity due to its potential for significant impact.

The vulnerability can be exploited by an authorized local attacker possessing low privileges. Exploitation requires local access and low complexity with no user interaction, enabling the attacker to elevate privileges and achieve high confidentiality, integrity, and availability impacts on the targeted system.

Microsoft's Security Response Center advisory at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29795 provides details on patches and mitigation steps.

Details

CWE(s): CWE-59

Affected Products

microsoft

edge update

≤ 1.3.195.45

MITRE ATT&CK Enterprise Techniques

T1068 Exploitation for Privilege Escalation Privilege Escalation

Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.

attack.mitre.org →

Why these techniques?

The CVE describes a local privilege escalation vulnerability (CWE-59 link following) in Microsoft Edge that allows a low-privileged local attacker to elevate privileges with high impact on confidentiality, integrity, and availability, directly mapping to exploitation for privilege escalation.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29795
Vendor Advisory · secure@microsoft.com