Tag
#Windows SSDP Service
CVE-2025-48815: Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability
Access of resource using incompatible type ('type confusion') in Windows SSDP Service allows an authorized attacker to elevate privileges locally.
CVE-2025-47975: Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability
Double free in Windows SSDP Service allows an authorized attacker to elevate privileges locally.
CVE-2025-47976: Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability
**What privileges could be gained by an attacker who successfully exploited this vulnerability?** An attacker who successfully exploited this vulnerability could gain SYSTEM privileges.