Vulnerability in Beyondtrust Privilege Management For Windows
CVE-2025-6250
Prior to 25.4.270.0, when wmic.exe is elevated with a full admin token the user can stop the Defendpoint service, bypassing anti-tamper protections. Once the service is disabled, the malicious user can add themselves to Administrators grou…
EPSS: 0.001 (24.7th percentile) — read the EPSS interpretation.
Affected products
- Beyondtrust Privilege Management For Windows — versions 0