CVE-2025-50173
published 2025-08-12CVE-2025-50173: Weak authentication in Windows Installer allows an authorized attacker to elevate privileges locally.
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
Weak authentication in Windows Installer allows an authorized attacker to elevate privileges locally.
Affected
49 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | multimedia_redirection_installer | >= 1.0.2 < 1.0.2507.21006 | 1.0.2507.21006 |
| microsoft | windows_10_1507 | < 10.0.10240.21100 | 10.0.10240.21100 |
| microsoft | windows_10_1607 | < 10.0.14393.8330 | 10.0.14393.8330 |
| microsoft | windows_10_1809 | < 10.0.17763.7678 | 10.0.17763.7678 |
| microsoft | windows_10_21h2 | < 10.0.19044.6216 | 10.0.19044.6216 |
| microsoft | windows_10_22h2 | < 10.0.19045.6216 | 10.0.19045.6216 |
| microsoft | windows_10_version_1507 | >= 10.0.10240.0 < 10.0.10240.21100 | 10.0.10240.21100 |
| microsoft | windows_10_version_1607 | >= 10.0.14393.0 < 10.0.14393.8330 | 10.0.14393.8330 |
| microsoft | windows_10_version_1809 | >= 10.0.17763.0 < 10.0.17763.7678 | 10.0.17763.7678 |
| microsoft | windows_10_version_21h2 | >= 10.0.19044.0 < 10.0.19044.6216 | 10.0.19044.6216 |
| microsoft | windows_10_version_22h2 | >= 10.0.19045.0 < 10.0.19045.6216 | 10.0.19045.6216 |
| microsoft | windows_11_22h2 | < 10.0.22621.5768 | 10.0.22621.5768 |
| microsoft | windows_11_23h2 | < 10.0.22631.5768 | 10.0.22631.5768 |
| microsoft | windows_11_24h2 | < 10.0.26100.4851 | 10.0.26100.4851 |
| microsoft | windows_11_version_22h2 | >= 10.0.22621.0 < 10.0.22621.5768 | 10.0.22621.5768 |
| microsoft | windows_11_version_22h3 | >= 10.0.22631.0 < 10.0.22631.5768 | 10.0.22631.5768 |
| microsoft | windows_11_version_23h2 | >= 10.0.22631.0 < 10.0.22631.5768 | 10.0.22631.5768 |
| microsoft | windows_11_version_24h2 | >= 10.0.26100.0 < 10.0.26100.4946 | 10.0.26100.4946 |
| microsoft | windows_server_2008 | — | — |
| microsoft | windows_server_2008_r2_service_pack_1 | >= 6.1.7601.0 < 6.1.7601.27872 | 6.1.7601.27872 |
| microsoft | windows_server_2008_service_pack_2 | >= 6.0.6003.0 < 6.0.6003.23471 | 6.0.6003.23471 |
| microsoft | windows_server_2012 | — | — |
| microsoft | windows_server_2012 | >= 6.2.9200.0 < 6.2.9200.25622 | 6.2.9200.25622 |
| microsoft | windows_server_2012_r2 | >= 6.3.9600.0 < 6.3.9600.22725 | 6.3.9600.22725 |
| microsoft | windows_server_2016 | < 10.0.14393.8330 | 10.0.14393.8330 |