Threats Tagged 'cve-2025-68623'
View all threats tagged with 'cve-2025-68623'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2025-68623'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2025-68623: n/aCVE-2025-68623 0 CVE-2025-68623 is a high-severity privilege escalation vulnerability in the Microsoft DirectX End-User Runtime Web Installer version 9.29.1974.0. The installer runs with high integrity and downloads executables to a writable %TEMP% folder, allowing a low-privilege user to replace these executables with malicious ones. When the installer executes the replaced file, the attacker's code runs with elevated privileges, potentially escalating from a standard user to SYSTEM level. This occurs because the installer does not securely handle the downloaded files before execution. Although Microsoft disputes this as a vulnerability, the behavior enables a complete privilege escalation chain. No patches have been released yet, and no known exploits are in the wild. The CVSS score is 8. Join the discussion | CVE Database V5 | 03/11/2026, 00:00:00 UTC Added: 03/11/2026, 16:30:07 UTC |
Showing 1 to 1 of 1 result