CVE-2025-59230 — Microsoft Windows Improper Access Control Vulnerability

Description

Microsoft Windows contains an improper access control vulnerability in Windows Remote Access Connection Manager which could allow an authorized attacker to elevate privileges locally.

How to fix CVE-2025-59230

No package mapping is available — consult the references below for vendor-specific guidance.

Is CVE-2025-59230 being exploited?

Yes — CVE-2025-59230 is on the CISA Known Exploited Vulnerabilities (KEV) catalog. Patch immediately.

Affected packages (0)

No package mapping in OSV.