Windows Performance Recorder (WPR) Denial of Service Vulnerability

July 8, 2025 invoker category_news

Security Update News

Update Information

Title Windows Performance Recorder (WPR) Denial of Service Vulnerability
Update ID MS:CVE-2025-49680
Type mscve
Published 2025-07-08T07:00:00
Last Updated 2025-07-08T07:00:00

Security Impact

CVSS Score 7.3
Severity HIGH

AI Analysis

AI Description A vulnerability in Windows Performance Recorder (WPR) allows an authorized attacker to perform a denial of service attack locally due to improper link resolution before file access.
AI Severity High
AI Vendor Microsoft
AI Product Windows Performance Recorder (WPR)

Affected CVEs

  • CVE-2025-49680

Update Details

Improper link resolution before file access (‘link following’) in Windows Performance Recorder allows an authorized attacker to deny service locally.

View Advisory Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.