Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Windows Installer privilege escalation (CVE-2025-50173)

Vulnerability
First reported
Last updated
Happening score
H score 25
1 unique sources, 2 articles

Summary

Hide ▲

CVE-2025-50173 in Windows Installer lets authenticated attackers escalate to SYSTEM privileges, and Microsoft’s August 2025 security update added UAC enforcement around MSI repair and related operations to reduce abuse. The flaw affects Windows Installer workflows across supported Windows client and server versions.

Related Happenings

CISA orders FCEB remediation for CVE-2025-60710

Public Sector Action
First: 15.04.2026 17:51 Last: 15.04.2026 17:51 Sources 1

About this happening: CISA added **CVE-2025-60710** to its **actively exploited** catalog and gave **FCEB agencies** **two weeks** to secure systems under **BOD 22-01**. The move targets a **Windows Ta...

Open Happening

Microsoft Windows 11 KB5079391 rollout disruption

Service Disruption
First: 01.04.2026 08:33 Last: 01.04.2026 08:33 Sources 1

About this happening: The **Microsoft** rollout of **KB5079391** for **Windows 11 24H2 and 25H2** was halted after installation failures left some devices unable to install the update cleanly. Users re...

Open Happening

Microsoft Windows Recovery Environment startup failure fixed by KB5075039

Service Disruption
First: 04.03.2026 23:03 Last: 04.03.2026 23:03 Sources 1

About this happening: Microsoft released **KB5075039** to fix **Windows Recovery Environment (WinRE)** startup failures that blocked some **Windows 10** users from reaching a critical repair and troubl...

Open Happening

Microsoft WinSqlite3.dll false-positive remediation

Advisory/Mitigation
First: 14.01.2026 18:44 Last: 14.01.2026 18:44 Sources 1

About this happening: **Microsoft** resolved a **false-positive security alert** affecting **WinSqlite3.dll**, reducing incorrect vulnerability warnings on core **Windows** systems. The fix applies acr...

Open Happening

Microsoft MSMQ enterprise workaround advisory (December 2025)

Advisory/Mitigation
First: 17.12.2025 14:30 Last: 17.12.2025 14:30 Sources 1

About this happening: Microsoft issued temporary mitigation guidance for a **Message Queuing (MSMQ)** issue that is breaking **enterprise apps** and **IIS** sites on updated Windows systems. The proble...

Open Happening

Timeline

  1. 10.09.2025 15:02 1 articles · 8mo ago

    Microsoft reduces UAC prompts for Windows Installer repairs after CVE-2025-50173

    Mitigation Patch Update

    Microsoft’s September 2025 Windows security update reduces User Account Control (UAC) prompts for Windows Installer MSI repairs on affected Windows client and server versions and lets IT admins disable prompts for specific apps by allowlisting MSI files. After the update, UAC prompts are required for MSI repair only when the target MSI file contains an elevated custom action.

    Show sources
    Open in new tab
  2. 04.09.2025 14:57 2 articles · 8mo ago

    Initial report: Windows Installer privilege escalation (CVE-2025-50173)

    Initial Disclosure

    The **CVE-2025-50173** Windows Installer flaw allowed **authenticated attackers** to escalate to **SYSTEM privileges** before Microsoft tightened MSI repair behavior in the August 2025 update cycle.

    Show sources
    Open in new tab