CVE-2025-60710: Microsoft Windows Link Following Vulnerability

Improper link resolution before file access ('link following') in Host Process for Windows Tasks allows an authorized attacker to elevate privileges locally.
CVE-2025-60710CVSS 7.8CISA KEVWindows

CVE-2025-60710: Microsoft Windows Link Following Vulnerability

Improper link resolution before file access ('link following') in Host Process for Windows Tasks allows an authorized attacker to elevate privileges locally.

CVSS
7.8 HIGH
EPSS
90.52%
Known exploited
yes
Product
Windows

What is known

Improper link resolution before file access ('link following') in Host Process for Windows Tasks allows an authorized attacker to elevate privileges locally.

Sources