CVE-2025-60703 is a vulnerability classified under CWE-822 (Untrusted Pointer Dereference) affecting Microsoft Windows 10 Version 1607 (build 10.0.14393.0). The flaw exists in the Windows Remote Desktop component, where improper handling of pointers allows an authorized local attacker to dereference untrusted pointers. This can lead to privilege escalation by corrupting memory or executing arbitrary code with elevated privileges. The vulnerability does not require user interaction but does require the attacker to have some level of local privileges, such as a standard user account. The CVSS 3.1 base score is 7.8, indicating high severity, with impacts rated as high on confidentiality, integrity, and availability. The attack vector is local (AV:L), with low attack complexity (AC:L), and privileges required are low (PR:L). The scope is unchanged (S:U), meaning the vulnerability affects only the vulnerable component without impacting other components. No known public exploits or patches are currently available, but the vulnerability is publicly disclosed and should be considered a significant risk for legacy Windows 10 systems still in operation. The vulnerability could be exploited to gain SYSTEM-level privileges, enabling full control over the affected machine.

If exploited, this vulnerability allows an attacker with local access and low privileges to escalate their privileges to SYSTEM level, effectively gaining full control over the affected Windows 10 Version 1607 system. This can lead to unauthorized access to sensitive data, modification or deletion of critical system files, installation of persistent malware, and disruption of system availability. Organizations using legacy Windows 10 versions in critical environments such as industrial control systems, healthcare, finance, or government may face severe operational and reputational damage. The lack of user interaction requirement increases the risk of automated or stealthy exploitation. Although no exploits are currently known in the wild, the vulnerability's characteristics make it a prime target for attackers once exploit code becomes available. The impact extends to any network or system relying on Remote Desktop services on the affected Windows version, potentially enabling lateral movement within enterprise networks.

Since no official patches are currently available, organizations should implement compensating controls to reduce risk. These include restricting local access to systems running Windows 10 Version 1607, especially limiting Remote Desktop usage to trusted administrators only. Employ strict access controls and monitoring on endpoints to detect unusual privilege escalation attempts. Disable or restrict Remote Desktop services where possible, or use network-level authentication and VPNs to limit exposure. Employ application whitelisting and endpoint detection and response (EDR) solutions to identify and block suspicious activities. Plan and prioritize upgrading affected systems to a supported Windows version with security updates. Regularly audit user privileges and remove unnecessary local accounts to minimize attack surface. Monitor threat intelligence sources for any emerging exploit code or patches related to CVE-2025-60703 and apply updates promptly once available.