CVE-2025-54104 Windows Defender Firewall Service Elevation of Privilege Vulnerability

item_0109.md

Access of resource using incompatible type (‘type confusion’) in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally.

Reference: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-54104