Microsoft Windows Hardware Lab Kit (HLK) Elevation of Privilege Vulnerability

May 13, 2025 invoker category_news

Security Update News

Update Information

Title Microsoft Windows Hardware Lab Kit (HLK) Elevation of Privilege Vulnerability
Update ID MS:CVE-2025-27488
Type mscve
Published 2025-05-13T07:00:00
Last Updated 2025-05-13T07:00:00

Security Impact

CVSS Score 6.7
Severity MEDIUM
Attack Vector LOCAL

Affected CVEs

  • CVE-2025-27488

Update Details

Use of hard-coded credentials in Windows Hardware Lab Kit allows an authorized attacker to elevate privileges locally.

View Advisory Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.