{
  "affected": [],
  "aliases": [
    "CVE-2025-27743"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-426"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-04-08T18:16:03Z",
    "severity": "HIGH"
  },
  "details": "Untrusted search path in System Center allows an authorized attacker to elevate privileges locally.",
  "id": "GHSA-6vg9-pg49-5fg4",
  "modified": "2025-04-08T18:34:55Z",
  "published": "2025-04-08T18:34:55Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27743"
    },
    {
      "type": "WEB",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27743"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:system_center_data_protection_manager:2019:-:*:*:*:*:*:*",
              "matchCriteriaId": "AFF85EC5-092E-439F-9336-087A8080EF29",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:system_center_data_protection_manager:2022:-:*:*:*:*:*:*",
              "matchCriteriaId": "88CFD239-E870-46DB-B77A-EFBC46A09BE3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:system_center_data_protection_manager:2025:-:*:*:*:*:*:*",
              "matchCriteriaId": "50724A4D-AD79-41AB-8FE9-21091D0D5CB0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:system_center_operations_manager:2019:-:*:*:*:*:*:*",
              "matchCriteriaId": "0BFD64D6-E8BB-4606-8D4C-EAE586CAD791",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:system_center_operations_manager:2022:-:*:*:*:*:*:*",
              "matchCriteriaId": "ABD632BE-513E-4581-9C8C-3A13DA1ADF1F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:system_center_operations_manager:2025:-:*:*:*:*:*:*",
              "matchCriteriaId": "0507AA0D-CBD5-400D-B24C-0549778F6029",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:system_center_orchestrator:2019:-:*:*:*:*:*:*",
              "matchCriteriaId": "B5E458FC-BB19-4AC4-B94D-A5A9F25D723F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:system_center_orchestrator:2022:-:*:*:*:*:*:*",
              "matchCriteriaId": "25E6F797-067D-4372-B3BC-3F77FD2986FD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:system_center_orchestrator:2025:-:*:*:*:*:*:*",
              "matchCriteriaId": "1A19BFD4-DAD8-4B0E-AF63-78590ACEC48E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:system_center_service_manager:2019:-:*:*:*:*:*:*",
              "matchCriteriaId": "17E46BD1-95BB-490C-A1F7-300DF80B119D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:system_center_service_manager:2022:-:*:*:*:*:*:*",
              "matchCriteriaId": "E9F69A12-E14C-4111-9B6F-D319128D081F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:system_center_service_manager:2025:-:*:*:*:*:*:*",
              "matchCriteriaId": "C8B3216B-3457-4EDA-9C2D-B52CCEB2E15A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:system_center_virtual_machine_manager:2019:-:*:*:*:*:*:*",
              "matchCriteriaId": "A5F1977C-D2A3-4CD9-A2EB-62F0C56B8F6F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:system_center_virtual_machine_manager:2022:-:*:*:*:*:*:*",
              "matchCriteriaId": "51480EB4-2477-4D86-9724-4CA5FEFC76FB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:system_center_virtual_machine_manager:2025:-:*:*:*:*:*:*",
              "matchCriteriaId": "BD13CFAE-ED86-4DFB-B90E-5FF2B162BB4A",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Untrusted search path in System Center allows an authorized attacker to elevate privileges locally."
    },
    {
      "lang": "es",
      "value": "La ruta de b\u00fasqueda no confiable en System Center permite que un atacante autorizado eleve privilegios localmente."
    }
  ],
  "id": "CVE-2025-27743",
  "lastModified": "2025-07-10T15:13:40.693",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "secure@microsoft.com",
        "type": "Primary"
      }
    ]
  },
  "published": "2025-04-08T18:16:03.260",
  "references": [
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27743"
    }
  ],
  "sourceIdentifier": "secure@microsoft.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-426"
        }
      ],
      "source": "secure@microsoft.com",
      "type": "Primary"
    }
  ]
}

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "nl",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
      },
      {
        "category": "description",
        "text": "Microsoft heeft een kwetsbaarheid verholpen in System Center.",
        "title": "Feiten"
      },
      {
        "category": "description",
        "text": "De kwetsbaarheid stelt een kwaadwillende door een onbetrouwbaar pad binnen System Center in staat, om lokale rechten te verhogen. Voor succesvol misbruik moet de kwaadwillende toegang hebben tot het apparaat om de System Center Windows-installatiepakketten te bereiken en vervolgens gebruikmaken van DLL-hijacking.\n\n```\nSystem Center: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2025-27743 | 7,80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n```",
        "title": "Interpretaties"
      },
      {
        "category": "description",
        "text": "Microsoft heeft updates beschikbaar gesteld waarmee de beschreven kwetsbaarheden worden verholpen. We raden u aan om deze updates te installeren. Meer informatie over de kwetsbaarheden, de installatie van de updates en eventuele work-arounds vindt u op:\n\nhttps://portal.msrc.microsoft.com/en-us/security-guidance",
        "title": "Oplossingen"
      },
      {
        "category": "description",
        "text": " ",
        "title": "Dreigingsinformatie"
      },
      {
        "category": "general",
        "text": "medium",
        "title": "Kans"
      },
      {
        "category": "general",
        "text": "high",
        "title": "Schade"
      },
      {
        "category": "general",
        "text": "Untrusted Search Path",
        "title": "CWE-426"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "cert@ncsc.nl",
      "name": "Nationaal Cyber Security Centrum",
      "namespace": "https://www.ncsc.nl/"
    },
    "title": "Kwetsbaarheid verholpen in Microsoft System Center",
    "tracking": {
      "current_release_date": "2025-04-08T18:52:22.999321Z",
      "generator": {
        "date": "2025-02-25T15:15:00Z",
        "engine": {
          "name": "V.A.",
          "version": "1.0"
        }
      },
      "id": "NCSC-2025-0108",
      "initial_release_date": "2025-04-08T18:52:22.999321Z",
      "revision_history": [
        {
          "date": "2025-04-08T18:52:22.999321Z",
          "number": "1.0.0",
          "summary": "Initiele versie"
        }
      ],
      "status": "final",
      "version": "1.0.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:unknown/unknown",
                    "product": {
                      "name": "vers:unknown/unknown",
                      "product_id": "CSAFPID-1311185"
                    }
                  }
                ],
                "category": "product_name",
                "name": "System Center 2012 R2 Operations Manager"
              },
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:unknown/unknown",
                    "product": {
                      "name": "vers:unknown/unknown",
                      "product_id": "CSAFPID-1311183"
                    }
                  }
                ],
                "category": "product_name",
                "name": "System Center 2016 Operations Manager"
              },
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:unknown/unknown",
                    "product": {
                      "name": "vers:unknown/unknown",
                      "product_id": "CSAFPID-1311184"
                    }
                  }
                ],
                "category": "product_name",
                "name": "System Center 2019 Operations Manager"
              },
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:microsoft/2022",
                    "product": {
                      "name": "vers:microsoft/2022",
                      "product_id": "CSAFPID-1774503",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:microsoft:system_center:2022:-:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Microsoft System Center 2022"
              },
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:microsoft/2019",
                    "product": {
                      "name": "vers:microsoft/2019",
                      "product_id": "CSAFPID-1774504",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:microsoft:system_center:2019:-:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Microsoft System Center 2019"
              },
              {
                "branches": [
                  {
                    "category": "product_version_range",
                    "name": "vers:microsoft/2025",
                    "product": {
                      "name": "vers:microsoft/2025",
                      "product_id": "CSAFPID-1774505",
                      "product_identification_helper": {
                        "cpe": "cpe:2.3:a:microsoft:system_center:2025:-:*:*:*:*:*:*"
                      }
                    }
                  }
                ],
                "category": "product_name",
                "name": "Microsoft System Center 2025"
              }
            ],
            "category": "product_family",
            "name": "System Center"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-547431",
                  "product_identification_helper": {
                    "cpe": "cpe:2.3:a:microsoft:system_center_operations_manager:-:*:*:*:*:*:*:*"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "System Center Operations Manager"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-376459"
                }
              }
            ],
            "category": "product_name",
            "name": "System Center Endpoint Protection"
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-27743",
      "cwe": {
        "id": "CWE-426",
        "name": "Untrusted Search Path"
      },
      "notes": [
        {
          "category": "other",
          "text": "Untrusted Search Path",
          "title": "CWE-426"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1311185",
          "CSAFPID-1311183",
          "CSAFPID-547431",
          "CSAFPID-1311184",
          "CSAFPID-1774503",
          "CSAFPID-1774504",
          "CSAFPID-1774505",
          "CSAFPID-376459"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-27743",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-27743.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1311185",
            "CSAFPID-1311183",
            "CSAFPID-547431",
            "CSAFPID-1311184",
            "CSAFPID-1774503",
            "CSAFPID-1774504",
            "CSAFPID-1774505",
            "CSAFPID-376459"
          ]
        }
      ],
      "title": "CVE-2025-27743"
    }
  ]
}

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Microsoft Visual Studio 2022 version 17.8 ant\u00e9rieures \u00e0 17.8.20",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Dynamics 365 Business Central Wave 1 2024 \u2013 Update 24.12 versions ant\u00e9rieures \u00e0 24.12.32447.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Visual Studio Tools pour Applications (VSTA) 2022 versions ant\u00e9rieures \u00e0 17.0.35906.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft SharePoint Server 2019 versions ant\u00e9rieures \u00e0 16.0.10417.20003",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Orchestrator 2019",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Service Manager 2019",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Dynamics 365 Business Central 2023 Wave 2 \u2013 Update 23.18 versions ant\u00e9rieures \u00e0 23.18.32409",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Operations Manager 2025",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Service Manager 2022",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Visual Studio 2022 version 17.13 ant\u00e9rieures \u00e0 17.13.6",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Operations Manager 2019",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft SharePoint Enterprise Server 2016 versions ant\u00e9rieures \u00e0 16.0.5495.1002",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Service Manager 2025",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Visual Studio Code versions ant\u00e9rieures \u00e0 1.99.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Visual Studio Tools pour Applications (VSTA) 2019 versions ant\u00e9rieures \u00e0 16.0.35907.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Data Protection Manager 2019",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Dynamics 365 Business Central 2025 Wave 1 \u2013 Update 26.0 versions ant\u00e9rieures \u00e0 26.0.32481",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Dynamics 365 Business Central 2024 Wave 2 \u2013 Update 25.6 versions ant\u00e9rieures \u00e0 25.6.32556",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Virtual Machine Manager 2025",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "SQL Server Management Studio 20.2 versions ant\u00e9rieures \u00e0 20.2.37.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Virtual Machine Manager 2019",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Visual Studio 2022 version 17.10 ant\u00e9rieures \u00e0 17.10.13",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "SharePoint Server Subscription Edition Language Pack versions ant\u00e9rieures \u00e0 16.0.10417.20003",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Visual Studio 2022 version 17.12 ant\u00e9rieures \u00e0 17.12.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Orchestrator 2022",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Data Protection Manager 2022",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Operations Manager 2022",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Data Protection Manager 2025",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft SharePoint Server Subscription Edition versions ant\u00e9rieures \u00e0 16.0.18526.20172",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "VSTA 2022 SDK versions ant\u00e9rieures \u00e0 17.0.35906.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft AutoUpdate pour Mac versions ant\u00e9rieures \u00e0 4.78",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "VSTA 2019 SDK versions ant\u00e9rieures \u00e0 16.0.35907.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Orchestrator 2025",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Virtual Machine Manager 2022",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2025-29802",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-29802"
    },
    {
      "name": "CVE-2025-29800",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-29800"
    },
    {
      "name": "CVE-2025-27746",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-27746"
    },
    {
      "name": "CVE-2025-29803",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-29803"
    },
    {
      "name": "CVE-2025-20570",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-20570"
    },
    {
      "name": "CVE-2025-29821",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-29821"
    },
    {
      "name": "CVE-2025-29804",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-29804"
    },
    {
      "name": "CVE-2025-29794",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-29794"
    },
    {
      "name": "CVE-2025-27743",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-27743"
    },
    {
      "name": "CVE-2025-27747",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-27747"
    },
    {
      "name": "CVE-2025-29801",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-29801"
    },
    {
      "name": "CVE-2025-29820",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-29820"
    },
    {
      "name": "CVE-2025-26682",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-26682"
    },
    {
      "name": "CVE-2025-29793",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-29793"
    },
    {
      "name": "CVE-2025-26642",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-26642"
    }
  ],
  "links": [],
  "reference": "CERTFR-2025-AVI-0291",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2025-04-09T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Microsoft. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Microsoft",
  "vendor_advisories": [
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-29800",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29800"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-27746",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27746"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-29802",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29802"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-29801",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29801"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-29794",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29794"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-29804",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29804"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-29820",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29820"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-29793",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29793"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-27747",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27747"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-20570",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-20570"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-26682",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26682"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-26642",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26642"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-29803",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29803"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-27743",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27743"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-29821",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29821"
    }
  ]
}

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Microsoft Visual Studio 2022 version 17.8 ant\u00e9rieures \u00e0 17.8.20",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Dynamics 365 Business Central Wave 1 2024 \u2013 Update 24.12 versions ant\u00e9rieures \u00e0 24.12.32447.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Visual Studio Tools pour Applications (VSTA) 2022 versions ant\u00e9rieures \u00e0 17.0.35906.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft SharePoint Server 2019 versions ant\u00e9rieures \u00e0 16.0.10417.20003",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Orchestrator 2019",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Service Manager 2019",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Dynamics 365 Business Central 2023 Wave 2 \u2013 Update 23.18 versions ant\u00e9rieures \u00e0 23.18.32409",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Operations Manager 2025",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Service Manager 2022",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Visual Studio 2022 version 17.13 ant\u00e9rieures \u00e0 17.13.6",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Operations Manager 2019",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft SharePoint Enterprise Server 2016 versions ant\u00e9rieures \u00e0 16.0.5495.1002",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Service Manager 2025",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Visual Studio Code versions ant\u00e9rieures \u00e0 1.99.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Visual Studio Tools pour Applications (VSTA) 2019 versions ant\u00e9rieures \u00e0 16.0.35907.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Data Protection Manager 2019",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Dynamics 365 Business Central 2025 Wave 1 \u2013 Update 26.0 versions ant\u00e9rieures \u00e0 26.0.32481",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Dynamics 365 Business Central 2024 Wave 2 \u2013 Update 25.6 versions ant\u00e9rieures \u00e0 25.6.32556",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Virtual Machine Manager 2025",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "SQL Server Management Studio 20.2 versions ant\u00e9rieures \u00e0 20.2.37.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Virtual Machine Manager 2019",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Visual Studio 2022 version 17.10 ant\u00e9rieures \u00e0 17.10.13",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "SharePoint Server Subscription Edition Language Pack versions ant\u00e9rieures \u00e0 16.0.10417.20003",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Visual Studio 2022 version 17.12 ant\u00e9rieures \u00e0 17.12.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Orchestrator 2022",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Data Protection Manager 2022",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Operations Manager 2022",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Data Protection Manager 2025",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft SharePoint Server Subscription Edition versions ant\u00e9rieures \u00e0 16.0.18526.20172",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "VSTA 2022 SDK versions ant\u00e9rieures \u00e0 17.0.35906.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft AutoUpdate pour Mac versions ant\u00e9rieures \u00e0 4.78",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "VSTA 2019 SDK versions ant\u00e9rieures \u00e0 16.0.35907.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Orchestrator 2025",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "System Center Virtual Machine Manager 2022",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2025-29802",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-29802"
    },
    {
      "name": "CVE-2025-29800",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-29800"
    },
    {
      "name": "CVE-2025-27746",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-27746"
    },
    {
      "name": "CVE-2025-29803",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-29803"
    },
    {
      "name": "CVE-2025-20570",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-20570"
    },
    {
      "name": "CVE-2025-29821",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-29821"
    },
    {
      "name": "CVE-2025-29804",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-29804"
    },
    {
      "name": "CVE-2025-29794",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-29794"
    },
    {
      "name": "CVE-2025-27743",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-27743"
    },
    {
      "name": "CVE-2025-27747",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-27747"
    },
    {
      "name": "CVE-2025-29801",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-29801"
    },
    {
      "name": "CVE-2025-29820",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-29820"
    },
    {
      "name": "CVE-2025-26682",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-26682"
    },
    {
      "name": "CVE-2025-29793",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-29793"
    },
    {
      "name": "CVE-2025-26642",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-26642"
    }
  ],
  "links": [],
  "reference": "CERTFR-2025-AVI-0291",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2025-04-09T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Microsoft. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Microsoft",
  "vendor_advisories": [
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-29800",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29800"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-27746",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27746"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-29802",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29802"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-29801",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29801"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-29794",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29794"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-29804",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29804"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-29820",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29820"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-29793",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29793"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-27747",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27747"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-20570",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-20570"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-26682",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26682"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-26642",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26642"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-29803",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29803"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-27743",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27743"
    },
    {
      "published_at": "2025-04-08",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-29821",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29821"
    }
  ]
}

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Der Microsoft System Center Operations Manager stellt \u00fcber eine einzige Benutzeroberfl\u00e4che einen tiefen Einblick in die Integrit\u00e4t, Leistung und Verf\u00fcgbarkeit Ihrer Rechenzentrumsumgebungen bereit - und das \u00fcber unterschiedlichste Anwendungen, Betriebssysteme, Hypervisoren und Hardware hinweg.\r\nSystem Center Service Manager ist ein Softwareprodukt von Microsoft, mit dem Unternehmen Vorf\u00e4lle und Probleme verwalten k\u00f6nnen.\r\nMicrosoft System Center Orchestrator ist eine Workflow-L\u00f6sung, zur \u00dcberwachung und Bereitstellung von Ressourcen im Rechenzentrum.\r\nVirtual Machine Manager (VMM) ist eine Verwaltungsl\u00f6sung f\u00fcr virtualisierte Rechenzentren. Mit dieser Anwendung k\u00f6nnen Sie Ihre Virtualisierungshost-, Netzwerk- und Speicherressourcen konfigurieren und verwalten, um f\u00fcr private Clouds virtuelle Computer und Dienste zu erstellen und bereitzustellen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein lokaler Angreifer kann eine Schwachstelle in Microsoft System Center 2016 Operations Manager, Microsoft System Center 2016 Server Manager, Microsoft System Center 2016 Orchestrator, Microsoft System Center 2016 Virtual Machine Manager, Microsoft System Center 2019 Operations Manager, Microsoft System Center 2019 Orchestrator und Microsoft System Center 2022 Operations Manager ausnutzen, um seine Privilegien zu erh\u00f6hen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-0745 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0745.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-0745 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0745"
      },
      {
        "category": "external",
        "summary": "Microsoft Leitfaden f\u00fcr Sicherheitsupdates",
        "url": "https://msrc.microsoft.com/update-guide/"
      }
    ],
    "source_lang": "en-US",
    "title": "Microsoft System Center: Schwachstelle erm\u00f6glicht Privilegieneskalation",
    "tracking": {
      "current_release_date": "2025-04-08T22:00:00.000+00:00",
      "generator": {
        "date": "2025-04-09T08:20:16.885+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2025-0745",
      "initial_release_date": "2025-04-08T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-04-08T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Microsoft System Center 2016 Operations Manager",
            "product": {
              "name": "Microsoft System Center 2016 Operations Manager",
              "product_id": "T042627",
              "product_identification_helper": {
                "cpe": "cpe:/a:microsoft:system_center_2016_operations_manager:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Microsoft System Center 2016 Orchestrator",
            "product": {
              "name": "Microsoft System Center 2016 Orchestrator",
              "product_id": "T042629",
              "product_identification_helper": {
                "cpe": "cpe:/a:microsoft:system_center_2016_orchestrator:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Microsoft System Center 2016 Server Manager",
            "product": {
              "name": "Microsoft System Center 2016 Server Manager",
              "product_id": "T042628",
              "product_identification_helper": {
                "cpe": "cpe:/a:microsoft:system_center_2016_server_manager:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Microsoft System Center 2016 Virtual Machine Manager",
            "product": {
              "name": "Microsoft System Center 2016 Virtual Machine Manager",
              "product_id": "T042630",
              "product_identification_helper": {
                "cpe": "cpe:/a:microsoft:system_center_2016_virtual_machine_manager:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Microsoft System Center 2019 Operations Manager",
            "product": {
              "name": "Microsoft System Center 2019 Operations Manager",
              "product_id": "T042631",
              "product_identification_helper": {
                "cpe": "cpe:/a:microsoft:system_center_2019_operations_manager:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Microsoft System Center 2019 Orchestrator",
            "product": {
              "name": "Microsoft System Center 2019 Orchestrator",
              "product_id": "T042632",
              "product_identification_helper": {
                "cpe": "cpe:/a:microsoft:system_center_2019_orchestrator:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Microsoft System Center 2022 Operations Manager",
            "product": {
              "name": "Microsoft System Center 2022 Operations Manager",
              "product_id": "T042633",
              "product_identification_helper": {
                "cpe": "cpe:/a:microsoft:system_center_operations_manager:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-27743",
      "product_status": {
        "known_affected": [
          "T042630",
          "T042631",
          "T042632",
          "T042633",
          "T042627",
          "T042628",
          "T042629"
        ]
      },
      "release_date": "2025-04-08T22:00:00.000+00:00",
      "title": "CVE-2025-27743"
    }
  ]
}

{
  "document": {
    "acknowledgments": [
      {
        "names": [
          "\u003ca href=\"https://medium.com/@spoppi\"\u003eSandro Poppi\u003c/a\u003e"
        ]
      }
    ],
    "aggregate_severity": {
      "namespace": "https://www.microsoft.com/en-us/msrc/security-update-severity-rating-system",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Public",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "general",
        "text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
        "title": "Additional Resources"
      },
      {
        "category": "legal_disclaimer",
        "text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
        "title": "Disclaimer"
      },
      {
        "category": "general",
        "text": "Required. The vulnerability documented by this CVE requires customer action to resolve.",
        "title": "Customer Action"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "secure@microsoft.com",
      "name": "Microsoft Security Response Center",
      "namespace": "https://msrc.microsoft.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "CVE-2025-27743 Microsoft System Center Elevation of Privilege Vulnerability - HTML",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27743"
      },
      {
        "category": "self",
        "summary": "CVE-2025-27743 Microsoft System Center Elevation of Privilege Vulnerability - CSAF",
        "url": "https://msrc.microsoft.com/csaf/advisories/2025/msrc_cve-2025-27743.json"
      },
      {
        "category": "external",
        "summary": "Microsoft Exploitability Index",
        "url": "https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1"
      },
      {
        "category": "external",
        "summary": "Microsoft Support Lifecycle",
        "url": "https://support.microsoft.com/lifecycle"
      },
      {
        "category": "external",
        "summary": "Common Vulnerability Scoring System",
        "url": "https://www.first.org/cvss"
      }
    ],
    "title": "Microsoft System Center Elevation of Privilege Vulnerability",
    "tracking": {
      "current_release_date": "2025-04-08T07:00:00.000Z",
      "generator": {
        "date": "2025-07-22T19:57:31.417Z",
        "engine": {
          "name": "MSRC Generator",
          "version": "1.0"
        }
      },
      "id": "msrc_CVE-2025-27743",
      "initial_release_date": "2025-04-08T07:00:00.000Z",
      "revision_history": [
        {
          "date": "2025-04-08T07:00:00.000Z",
          "legacy_version": "1",
          "number": "1",
          "summary": "Information published."
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-27743",
      "cwe": {
        "id": "CWE-426",
        "name": "Untrusted Search Path"
      },
      "notes": [
        {
          "category": "general",
          "text": "Microsoft",
          "title": "Assigning CNA"
        },
        {
          "category": "faq",
          "text": "This vulnerability affects the following products under the Microsoft System Center:\nSystem Center Operations Manager, System Center Service Manager, System Center Orchestrator, System Center Data protection Manager, System Center Virtual Machine Manager\nFor more information about these products see System Center documentation.",
          "title": "What Microsoft System Center Products are affected by this vulnerability?"
        },
        {
          "category": "faq",
          "text": "No. The RTM version of all System Center products remain unchanged. There\u0027s no change in the product version.\nThere are no existing System Center deployments impacted by this vulnerability. However, it is recommended that users delete the existing installer setup files (.exe) and then download the latest version of their System Center product (.ZIP) found in the table below.\nSystem Center Virtual Machine Manager 2022: System Center Virtual Machine Manager 2022, https://go.microsoft.com/fwlink/p/?LinkID=2195845: https://go.microsoft.com/fwlink/p/?LinkID=2195845, System Center Virtual Machine Manager 2019: System Center Virtual Machine Manager 2019, https://go.microsoft.com/fwlink/p/?LinkID=2195725: https://go.microsoft.com/fwlink/p/?LinkID=2195725, System Center Virtual Machine Manager 2025: System Center Virtual Machine Manager 2025, https://go.microsoft.com/fwlink/?linkid=2292412: https://go.microsoft.com/fwlink/?linkid=2292412, System Center Data Protection Manager 2025: System Center Data Protection Manager 2025, https://go.microsoft.com/fwlink/?linkid=2292311: https://go.microsoft.com/fwlink/?linkid=2292311, System Center Data Protection Manager 2022: System Center Data Protection Manager 2022, https://go.microsoft.com/fwlink/p/?LinkID=2195847: https://go.microsoft.com/fwlink/p/?LinkID=2195847, System Center Data Protection Manager 2019: System Center Data Protection Manager 2019, https://go.microsoft.com/fwlink/p/?LinkID=2195851: https://go.microsoft.com/fwlink/p/?LinkID=2195851, System Center Orchestrator 2019: System Center Orchestrator 2019, https://go.microsoft.com/fwlink/p/?LinkID=2195848: https://go.microsoft.com/fwlink/p/?LinkID=2195848, System Center Orchestrator 2022: System Center Orchestrator 2022, https://go.microsoft.com/fwlink/p/?LinkID=2195531: https://go.microsoft.com/fwlink/p/?LinkID=2195531, System Center Orchestrator 2025: System Center Orchestrator 2025, https://go.microsoft.com/fwlink/?linkid=2292411: https://go.microsoft.com/fwlink/?linkid=2292411, System Center Service Manager 2019: System Center Service Manager 2019, https://go.microsoft.com/fwlink/p/?LinkID=2195849: https://go.microsoft.com/fwlink/p/?LinkID=2195849, System Center Service Manager 2022: System Center Service Manager 2022, https://go.microsoft.com/fwlink/p/?LinkID=2195846: https://go.microsoft.com/fwlink/p/?LinkID=2195846, System Center Service Manager 2025: System Center Service Manager 2025, https://go.microsoft.com/fwlink/?linkid=2292310: https://go.microsoft.com/fwlink/?linkid=2292310, System Center Operations Manager\u00a02019: System Center Operations Manager\u00a02019, https://go.microsoft.com/fwlink/p/?LinkID=2195532: https://go.microsoft.com/fwlink/p/?LinkID=2195532, System Center Operations Manager 2022: System Center Operations Manager 2022, https://go.microsoft.com/fwlink/p/?LinkID=2195530: https://go.microsoft.com/fwlink/p/?LinkID=2195530, System Center Operations Manager\u00a02025: System Center Operations Manager\u00a02025, https://go.microsoft.com/fwlink/?linkid=2292308: https://go.microsoft.com/fwlink/?linkid=2292308",
          "title": "Will the product version change with the new installation media?"
        },
        {
          "category": "faq",
          "text": "Only customers who re-use existing System Center installer files (.exe) files to deploy new instances in their environment are affected by this vulnerability. Customers performing installations in this manner must delete the existing installer setup files (.exe) and then download the latest version of their System Center product linked in the following table.\nCustomers who download new versions of the setup files (.ZIP) for new deployments are not affected and do not need to perform any action to mitigate the vulnerability.\nSystem Center Virtual Machine Manager 2022: System Center Virtual Machine Manager 2022, https://go.microsoft.com/fwlink/p/?LinkID=2195845: https://go.microsoft.com/fwlink/p/?LinkID=2195845, System Center Virtual Machine Manager 2019: System Center Virtual Machine Manager 2019, https://go.microsoft.com/fwlink/p/?LinkID=2195725: https://go.microsoft.com/fwlink/p/?LinkID=2195725, System Center Virtual Machine Manager 2025: System Center Virtual Machine Manager 2025, https://go.microsoft.com/fwlink/?linkid=2292412: https://go.microsoft.com/fwlink/?linkid=2292412, System Center Data Protection Manager 2025: System Center Data Protection Manager 2025, https://go.microsoft.com/fwlink/?linkid=2292311: https://go.microsoft.com/fwlink/?linkid=2292311, System Center Data Protection Manager 2022: System Center Data Protection Manager 2022, https://go.microsoft.com/fwlink/p/?LinkID=2195847: https://go.microsoft.com/fwlink/p/?LinkID=2195847, System Center Data Protection Manager 2019: System Center Data Protection Manager 2019, https://go.microsoft.com/fwlink/p/?LinkID=2195851: https://go.microsoft.com/fwlink/p/?LinkID=2195851, System Center Orchestrator 2019: System Center Orchestrator 2019, https://go.microsoft.com/fwlink/p/?LinkID=2195848: https://go.microsoft.com/fwlink/p/?LinkID=2195848, System Center Orchestrator 2022: System Center Orchestrator 2022, https://go.microsoft.com/fwlink/p/?LinkID=2195531: https://go.microsoft.com/fwlink/p/?LinkID=2195531, System Center Orchestrator 2025: System Center Orchestrator 2025, https://go.microsoft.com/fwlink/?linkid=2292411: https://go.microsoft.com/fwlink/?linkid=2292411, System Center Service Manager 2019: System Center Service Manager 2019, https://go.microsoft.com/fwlink/p/?LinkID=2195849: https://go.microsoft.com/fwlink/p/?LinkID=2195849, System Center Service Manager 2022: System Center Service Manager 2022, https://go.microsoft.com/fwlink/p/?LinkID=2195846: https://go.microsoft.com/fwlink/p/?LinkID=2195846, System Center Service Manager 2025: System Center Service Manager 2025, https://go.microsoft.com/fwlink/?linkid=2292310: https://go.microsoft.com/fwlink/?linkid=2292310, System Center Operations Manager\u00a02019: System Center Operations Manager\u00a02019, https://go.microsoft.com/fwlink/p/?LinkID=2195532: https://go.microsoft.com/fwlink/p/?LinkID=2195532, System Center Operations Manager 2022: System Center Operations Manager 2022, https://go.microsoft.com/fwlink/p/?LinkID=2195530: https://go.microsoft.com/fwlink/p/?LinkID=2195530, System Center Operations Manager\u00a02025: System Center Operations Manager\u00a02025, https://go.microsoft.com/fwlink/?linkid=2292308: https://go.microsoft.com/fwlink/?linkid=2292308",
          "title": "What actions do customers need to take to protect themselves from this vulnerability?"
        },
        {
          "category": "faq",
          "text": "An attacker who successfully exploited this vulnerability could gain SYSTEM privileges.",
          "title": "What privileges could be gained by an attacker who successfully exploited this vulnerability?"
        },
        {
          "category": "faq",
          "text": "To successfully exploit this vulnerability, an attacker must have access to the device to access the System Center Windows installer packages and then utilize DLL hijacking.",
          "title": "According to the CVSS metric, the attack vector is local (AV:L). What does this mean for this vulnerability?"
        },
        {
          "category": "faq",
          "text": "Successful exploitation of this vulnerability requires an attacker to have access to the location where the target file will be run. They would then need to plant a specific file that would be used as part of the exploitation.",
          "title": "According to the CVSS metric, privileges required is low (PR:L). What does that mean for this vulnerability?"
        }
      ],
      "product_status": {
        "fixed": [
          "12057",
          "12058",
          "12458",
          "12521",
          "12522",
          "12523",
          "12524",
          "12525",
          "12526",
          "12527",
          "12528",
          "12529",
          "12530",
          "12531",
          "12532"
        ],
        "known_affected": [
          "1",
          "2",
          "3",
          "4",
          "5",
          "6",
          "7",
          "8",
          "9",
          "10",
          "11",
          "12",
          "13",
          "14",
          "15"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-27743 Microsoft System Center Elevation of Privilege Vulnerability - HTML",
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27743"
        },
        {
          "category": "self",
          "summary": "CVE-2025-27743 Microsoft System Center Elevation of Privilege Vulnerability - CSAF",
          "url": "https://msrc.microsoft.com/csaf/advisories/2025/msrc_cve-2025-27743.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalsScore": 0.0,
            "exploitCodeMaturity": "UNPROVEN",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "remediationLevel": "OFFICIAL_FIX",
            "reportConfidence": "CONFIRMED",
            "scope": "UNCHANGED",
            "temporalScore": 6.8,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
            "version": "3.1"
          },
          "products": [
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8",
            "9",
            "10",
            "11",
            "12",
            "13",
            "14",
            "15"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Elevation of Privilege"
        },
        {
          "category": "exploit_status",
          "details": "Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely"
        }
      ],
      "title": "Microsoft System Center Elevation of Privilege Vulnerability"
    }
  ]
}