Impact
The vulnerability allows an attacker to gain higher privileges within the Microsoft Malware Protection Engine, the core component of Microsoft Defender. It is identified as a path traversal flaw and mapped to CWE-59, meaning a malicious input can cause the engine to access files or directories outside its intended scope, potentially leading to the execution of arbitrary code or other higher‑privilege actions.
Affected Systems
Affected vendors and Malware Protection Engine, which is the primary component of Microsoft Defender on Windows platforms. No specific version numbers are listed in the CVE data, indicating that the issue may affect all current releases of the engine until a vendor patch is released.
Risk and Exploitability
The CVSS score of 7.8 classifies the vulnerability as high severity, and the EPSS score of 3% indicates a moderate probability of exploitation. The vulnerability is not listed in the CISA KEV catalog. Because the CVE description does not disclose an explicit attack vector, the likely exploitation scenario is local or requires a foothold within the system to exploit the engine’s file handling; remote exploitation is not confirmed. Until a security update is deployed, the risk remains open for any attacker who can deliver malicious input to the Malware Protection Engine.
OpenCVE Enrichment