CVE-2025-54109 Windows Defender Firewall Service Elevation of Privilege Vulnerability

item_0113.md

Access of resource using incompatible type (‘type confusion’) in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally.

Reference: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-54109